Method to protect software against unwanted use with a “renaming” principle

US 7,343,494 B2
Filed: 06/25/2002
Issued: 03/11/2008
Est. Priority Date: 08/01/2001
Status: Active Grant

First Claim

Patent Images

1. Process to protect, using at least one blank unit (60) including at least memorization means (15) and processing means (16), a vulnerable software (2v) against its unauthorized usage, said vulnerable software (2v) being produced from a source (2vs) and working on a data processing system (3), said protection process comprising:

During a protection phase (P);

defining;

a set of dependent functions, whose dependent functions are liable to be executed in a unit (6),a set of triggering commands for said set of dependent functions, said triggering commands being liable to be executed in the data processing system (3) and to trigger the execution in a unit (6), of the dependent functions,for each triggering command, an order corresponding at least in part to the information transmitted from the data processing system (3) to a unit (6), so as to trigger the execution of the corresponding dependent function in a unit (6), said order having the form of at least one argument of the triggering command,a method of renaming of the orders enabling to rename the orders so as to obtain triggering commands with renamed orders,and restoring means (20) designed to be implemented in a unit (6) during a usage phase (U), and enabling to restore the dependent function to execute, from the renamed order,constructing exploitation means enabling to transform the blank unit (60) into a unit (6) able to implement the restoring means (20),creating a protected software (2p);

by choosing, at least one algorithmic processing which, during the execution of the vulnerable software (2v), uses at least one operand and enables to obtain at least one result,by choosing at least one portion of the source of the vulnerable software (2vs) containing at least one chosen algorithmic processing,by producing a source of the protected software (2ps) from the source of the vulnerable software (2vs), by modifying at least one chosen portion of the source of the vulnerable software (2vs) to obtain at least one modified portion of the source of the protected software (2ps), this modification being such that;

during the execution of the protected software (2p) a first execution part (2pes) is executed in the data processing system (3) and a second execution part (2peu) is executed in a unit (6), obtained from the blank unit (60) after upload of information,the second execution part (2peu) executes at least the functionality of at least one chosen algorithmic processing,at least one chosen algorithmic processing is split so that during the execution of the protected software (2p), said algorithmic processing is executed, by means of the second execution part (2peu), using dependent functions,for at least one chosen algorithmic processing, triggering commands with renamed orders are integrated to the source of the protected software (2ps), so that during the execution of the protected software (2p), each triggering command with renamed order is executed by the first execution part (2pes) and triggers in the unit (6), the restoring, by means of the restoring means (20), of the order and the execution, by means of the second execution part (2peu), of the corresponding dependent function,and a sequence of the triggering commands with renamed orders is chosen among the set of sequences allowing the execution of the protected software (2p),and by producing;

a first object part (2pos) of the protected software (2p), from the source of the protected software (2ps), said first object part (2pos) being such that during the execution of the protected software (2p), appears a first execution part (2pes) which is executed in the data processing system (3) and whose at least a portion takes into account that the triggering commands with renamed orders are executed according to the chosen sequence,and a second object part (2pou) of the protected software (2p), containing the exploitation means, said second object part (2pou) being such that, after upload to the blank unit (60) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the orders are restored and the dependent functions are executed,and uploading the second object part (2pou) to the blank unit (60), with the intention of obtaining the unit (6),and during a usage phase (U) during which the protected software (2p) is executed;

in the presence of the unit (6) and each time a triggering command with renamed order, contained in a portion of the first execution part (2pes) imposes it, restoring in the unit (6), the identity of the corresponding dependent function and executing it, so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to trigger the execution of a dependent function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention concerns a process to protect a vulnerable software working on a data processing system against its unauthorized usage using a processing and memorizing unit. The process comprises defining: 1) a set of dependent functions whose dependent functions are liable to be executed in a processing and memorizing unit 2) a set of triggering commands, said triggering commands being liable to be executed in the data processing system and to trigger the execution in a processing and memorizing unit, of the dependent functions 3) for each triggering command, an order 4) a method of renaming of the orders 5) restoring means designed to be implemented in a processing and memorizing unit during a usage phase, and enabling to restore the dependent function to execute, from the renamed order.

Citations

45 Claims

1. Process to protect, using at least one blank unit (60) including at least memorization means (15) and processing means (16), a vulnerable software (2v) against its unauthorized usage, said vulnerable software (2v) being produced from a source (2vs) and working on a data processing system (3), said protection process comprising:
- During a protection phase (P);
  
  defining;
  
  a set of dependent functions, whose dependent functions are liable to be executed in a unit (6),a set of triggering commands for said set of dependent functions, said triggering commands being liable to be executed in the data processing system (3) and to trigger the execution in a unit (6), of the dependent functions,for each triggering command, an order corresponding at least in part to the information transmitted from the data processing system (3) to a unit (6), so as to trigger the execution of the corresponding dependent function in a unit (6), said order having the form of at least one argument of the triggering command,a method of renaming of the orders enabling to rename the orders so as to obtain triggering commands with renamed orders,and restoring means (20) designed to be implemented in a unit (6) during a usage phase (U), and enabling to restore the dependent function to execute, from the renamed order,constructing exploitation means enabling to transform the blank unit (60) into a unit (6) able to implement the restoring means (20),creating a protected software (2p);
  
  by choosing, at least one algorithmic processing which, during the execution of the vulnerable software (2v), uses at least one operand and enables to obtain at least one result,by choosing at least one portion of the source of the vulnerable software (2vs) containing at least one chosen algorithmic processing,by producing a source of the protected software (2ps) from the source of the vulnerable software (2vs), by modifying at least one chosen portion of the source of the vulnerable software (2vs) to obtain at least one modified portion of the source of the protected software (2ps), this modification being such that;
  
  during the execution of the protected software (2p) a first execution part (2pes) is executed in the data processing system (3) and a second execution part (2peu) is executed in a unit (6), obtained from the blank unit (60) after upload of information,the second execution part (2peu) executes at least the functionality of at least one chosen algorithmic processing,at least one chosen algorithmic processing is split so that during the execution of the protected software (2p), said algorithmic processing is executed, by means of the second execution part (2peu), using dependent functions,for at least one chosen algorithmic processing, triggering commands with renamed orders are integrated to the source of the protected software (2ps), so that during the execution of the protected software (2p), each triggering command with renamed order is executed by the first execution part (2pes) and triggers in the unit (6), the restoring, by means of the restoring means (20), of the order and the execution, by means of the second execution part (2peu), of the corresponding dependent function,and a sequence of the triggering commands with renamed orders is chosen among the set of sequences allowing the execution of the protected software (2p),and by producing;
  
  a first object part (2pos) of the protected software (2p), from the source of the protected software (2ps), said first object part (2pos) being such that during the execution of the protected software (2p), appears a first execution part (2pes) which is executed in the data processing system (3) and whose at least a portion takes into account that the triggering commands with renamed orders are executed according to the chosen sequence,and a second object part (2pou) of the protected software (2p), containing the exploitation means, said second object part (2pou) being such that, after upload to the blank unit (60) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the orders are restored and the dependent functions are executed,and uploading the second object part (2pou) to the blank unit (60), with the intention of obtaining the unit (6),and during a usage phase (U) during which the protected software (2p) is executed;
  
  in the presence of the unit (6) and each time a triggering command with renamed order, contained in a portion of the first execution part (2pes) imposes it, restoring in the unit (6), the identity of the corresponding dependent function and executing it, so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to trigger the execution of a dependent function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
- - 2. Process according to claim 1, comprising:
    - during the protection phase (P);
      
      defining for at least one dependent function, a family of dependent functions algorithmically equivalent, but triggered by triggering commands whose renamed orders are different,and modifying the protected software (2p);
      
      by choosing, in the source of the protected software (2ps) at least one triggering command with renamed order,and by modifying at least one chosen portion of the source of the protected software (2ps) by replacing at least the renamed order of one chosen triggering command with renamed order, with another renamed order, triggering a dependent function of the same family.
  - 3. Process according to claim 2, comprising:
    - during the protection phase (P);
      
      defining;
      
      as method of renaming of the orders, a ciphering method to cipher the orders,and as restoring means (20), means implementing a deciphering method to decipher the renamed orders and thus restore the identity of the dependent functions to execute in the unit (6).
  - 4. Process according to claim 3, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing at least one variable used in at least one chosen algorithmic processing, which during the execution of the protected software (2p), partially defines the state of the protected software (2p),by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen variable or at least one copy of chosen variable resides in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) takes also into account that at least one variable or at least one copy of variable resides in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which at least one chosen variable, or at least one copy of chosen variable resides too in the unit (6),and during the usage phase (U);
      
      in the presence of the unit (6) each time a portion of the first execution part (2pes) imposes it, using a variable or a copy of variable residing in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to use a variable or a copy of variable residing in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently the protected software (2p) is not completely functional.
  - 5. Process according claim 3, comprising:
    - during the protection phase (P);
      
      defining;
      
      a set of elementary functions, sub-set of the set of dependent functions,and a set of elementary commands for said set of elementary functions, said set of elementary commands being a sub-set of the set of triggering commands,constructing the exploitation means enabling the unit (6) to also execute the elementary functions of said set of elementary functions, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands whose order has been renamed,and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that the splitting of at least one chosen algorithmic processing into dependent functions uses only elementary functions,by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) also executes the elementary commands according to the chosen sequence,and the second object part (2pou) of the protected software (2p) also containing the exploitation means, said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are also executed the elementary functions triggered by the first execution part (2pes),and during the usage phase (U);
      
      in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 6. Process according to claim 5, comprising:
    - during the protection phase (P);
      
      defining;
      
      an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions,that the chaining of the instructions is liable to be monitored at least in part in the unit (6),that the expected chaining must be abided by during the execution of software,detection means (17) to implement in the unit (6) and enabling to detect that the chaining of the instructions does not abide by the expected chaining,and coercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or to modify the execution of a software, when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6), to execute the instructions of the instructions set and to implement the detection means (17) and the coercion means (18),and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps);
      
      by transforming the elementary functions into instructions,by choosing in the source of the protected software (2ps), instructions whose chaining is to be monitored,by specifying the expected chaining by which at least some of the chosen instructions must abide during their execution in the unit (6),and by transforming the elementary commands into instructions commands corresponding to the instructions used,this modification being such that during the execution of the protected software (2p), the chaining of the instructions is monitored by means of the second execution part (2peu), and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and by producing the second object part (2pou) of the protected software (2p) containing the exploitation means also enabling the execution of the instructions of the instructions set and also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the chaining of the instructions is monitored and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      as long as the chaining of the instructions corresponds to the expected chaining in all the modified portions of the protected software (2p), enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally,and in the case where it is detected in a portion of the protected software (2p) that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 7. Process according to claim 2, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing at least one variable used in at least one chosen algorithmic processing, which during the execution of the protected software (2p), partially defines the state of the protected software (2p),by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen variable or at least one copy of chosen variable resides in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) takes also into account that at least one variable or at least one copy of variable resides in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which at least one chosen variable, or at least one copy of chosen variable resides too in the unit (6),and during the usage phase (U);
      
      in the presence of the unit (6) each time a portion of the first execution part (2pes) imposes it, using a variable or a copy of variable residing in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to use a variable or a copy of variable residing in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently the protected software (2p) is not completely functional.
  - 8. Process according claim 2, comprising:
    - during the protection phase (P);
      
      defining;
      
      a set of elementary functions, sub-set of the set of dependent functions,and a set of elementary commands for said set of elementary functions, said set of elementary commands being a sub-set of the set of triggering commands,constructing the exploitation means enabling the unit (6) to also execute the elementary functions of said set of elementary functions, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands whose order has been renamed,and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that the splitting of at least one chosen algorithmic processing into dependent functions uses only elementary functions,by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) also executes the elementary commands according to the chosen sequence,and the second object part (2pou) of the protected software (2p) also containing the exploitation means, said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are also executed the elementary functions triggered by the first execution part (2pes),and during the usage phase (U);
      
      in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 9. Process according to claim 8, comprising:
    - during the protection phase (P);
      
      defining;
      
      an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions,that the chaining of the instructions is liable to be monitored at least in part in the unit (6),that the expected chaining must be abided by during the execution of software,detection means (17) to implement in the unit (6) and enabling to detect that the chaining of the instructions does not abide by the expected chaining,and coercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or to modify the execution of a software, when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6), to execute the instructions of the instructions set and to implement the detection means (17) and the coercion means (18),and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps);
      
      by transforming the elementary functions into instructions,by choosing in the source of the protected software (2ps), instructions whose chaining is to be monitored,by specifying the expected chaining by which at least some of the chosen instructions must abide during their execution in the unit (6),and by transforming the elementary commands into instructions commands corresponding to the instructions used,this modification being such that during the execution of the protected software (2p), the chaining of the instructions is monitored by means of the second execution part (2peu), and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and by producing the second object part (2pou) of the protected software (2p) containing the exploitation means also enabling the execution of the instructions of the instructions set and also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the chaining of the instructions is monitored and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      as long as the chaining of the instructions corresponds to the expected chaining in all the modified portions of the protected software (2p), enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally,and in the case where it is detected in a portion of the protected software (2p) that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 10. Process according to claim 1, comprising:
    - during the protection phase (P);
      
      defining;
      
      as method of renaming of the orders, a ciphering method to cipher the orders,and as restoring means (20), means implementing a deciphering method to decipher the renamed orders and thus restore the identity of the dependent functions to execute in the unit (6).
  - 11. Process according to claim 10, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing at least one variable used in at least one chosen algorithmic processing, which during the execution of the protected software (2p), partially defines the state of the protected software (2p),by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen variable or at least one copy of chosen variable resides in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) takes also into account that at least one variable or at least one copy of variable resides in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which at least one chosen variable, or at least one copy of chosen variable resides too in the unit (6),and during the usage phase (U);
      
      in the presence of the unit (6) each time a portion of the first execution part (2pes) imposes it, using a variable or a copy of variable residing in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to use a variable or a copy of variable residing in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently the protected software (2p) is not completely functional.
  - 12. Process according claim 10, comprising:
    - during the protection phase (P);
      
      defining;
      
      a set of elementary functions, sub-set of the set of dependent functions,and a set of elementary commands for said set of elementary functions, said set of elementary commands being a sub-set of the set of triggering commands,constructing the exploitation means enabling the unit (6) to also execute the elementary functions of said set of elementary functions, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands whose order has been renamed,and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that the splitting of at least one chosen algorithmic processing into dependent functions uses only elementary functions,by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) also executes the elementary commands according to the chosen sequence,and the second object part (2pou) of the protected software (2p) also containing the exploitation means, said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are also executed the elementary functions triggered by the first execution part (2pes),and during the usage phase (U);
      
      in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 13. Process according to claim 12, comprising:
    - during the protection phase (P);
      
      defining;
      
      an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions,that the chaining of the instructions is liable to be monitored at least in part in the unit (6),that the expected chaining must be abided by during the execution of software,detection means (17) to implement in the unit (6) and enabling to detect that the chaining of the instructions does not abide by the expected chaining,and coercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or to modify the execution of a software, when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6), to execute the instructions of the instructions set and to implement the detection means (17) and the coercion means (18),and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps);
      
      by transforming the elementary functions into instructions,by choosing in the source of the protected software (2ps), instructions whose chaining is to be monitored,by specifying the expected chaining by which at least some of the chosen instructions must abide during their execution in the unit (6),and by transforming the elementary commands into instructions commands corresponding to the instructions used,this modification being such that during the execution of the protected software (2p), the chaining of the instructions is monitored by means of the second execution part (2peu), and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and by producing the second object part (2pou) of the protected software (2p) containing the exploitation means also enabling the execution of the instructions of the instructions set and also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the chaining of the instructions is monitored and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      as long as the chaining of the instructions corresponds to the expected chaining in all the modified portions of the protected software (2p), enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally,and in the case where it is detected in a portion of the protected software (2p) that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 14. Process according to claim 1, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing at least one variable used in at least one chosen algorithmic processing, which during the execution of the protected software (2p), partially defines the state of the protected software (2p),by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen variable or at least one copy of chosen variable resides in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) takes also into account that at least one variable or at least one copy of variable resides in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which at least one chosen variable, or at least one copy of chosen variable resides too in the unit (6),and during the usage phase (U);
      
      in the presence of the unit (6) each time a portion of the first execution part (2pes) imposes it, using a variable or a copy of variable residing in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to use a variable or a copy of variable residing in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently the protected software (2p) is not completely functional.
  - 15. Process according claim 1, comprising:
    - during the protection phase (P);
      
      defining;
      
      a set of elementary functions, sub-set of the set of dependent functions,and a set of elementary commands for said set of elementary functions, said set of elementary commands being a sub-set of the set of triggering commands,constructing the exploitation means enabling the unit (6) to also execute the elementary functions of said set of elementary functions, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands whose order has been renamed,and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that the splitting of at least one chosen algorithmic processing into dependent functions uses only elementary functions,by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) also executes the elementary commands according to the chosen sequence,and the second object part (2pou) of the protected software (2p) also containing the exploitation means, said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are also executed the elementary functions triggered by the first execution part (2pes),and during the usage phase (U);
      
      in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 16. Process according to one of the claims 5 to 15, comprising:
    - during the protection phase (P);
      
      defining;
      
      at least one software execution characteristic, liable to be monitored at least in part in the unit (6),at least one criterion to abide by for at least one software execution characteristic,detection means (17) to implement in the unit (6) and enabling to detect that at least one software execution characteristic does not abide by at least one associated criterion,and coercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or modify the execution of a software, when at least one criterion is not abided by,constructing the exploitation means enabling the unit (6), to also implement the detection means (17) and the coercion means (18),and modifying the protected software (2p);
      
      by choosing at least one software execution characteristic to monitor, among the software execution characteristics liable to be monitored,by choosing at least one criterion to abide by for at least one chosen software execution characteristic,by choosing in the source of the protected software (2ps), elementary functions for which at least one chosen software execution characteristic is to be monitored,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen execution characteristic is monitored by means of the second execution part (2peu), and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and by producing the second object part (2pou) of the protected software (2p) containing the exploitation means also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), at least one software execution characteristic is monitored and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      as long as all the criteria corresponding to all the monitored execution characteristics of all the modified portions of the protected software (2p) are abided by, enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally,and if at least one of the criteria corresponding to a monitored execution characteristic of a portion of the protected software (2p) is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 17. Process according to claim 16, to limit usage of a protected software (2p), comprising:
    - during the protection phase (P);
      
      defining;
      
      as software execution characteristic liable to be monitored, a variable of measurement of the usage of a functionality of a software,as criterion to abide by, at least one threshold associated to each variable of measurement,and actualization means enabling to update at least one variable of measurement,constructing the exploitation means enabling the unit (6) to also implement the actualization means,and modifying the protected software (2p);
      
      by choosing as software execution characteristic to monitor, at least one variable of measurement of the usage of at least one functionality of a software,by choosing;
      
      at least one functionality of the protected software (2p) whose usage is liable to be monitored using a variable of measurement,at least one variable of measurement used to quantify the usage of said functionality,at least one threshold associated to a chosen variable of measurement corresponding to a limit of usage of said functionality,and at least one method of update of a chosen variable of measurement depending on the usage of said functionality,and by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the variable of measurement is actualized by means of the second execution part (2peu) depending on the usage of said functionality, and at least one threshold crossing is taken into account,and during the usage phase (U), in the presence of the unit (6), and in the case where at least one threshold crossing corresponding to at least one limit of usage is detected, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 18. Process according to claim 17, comprising:
    - during the protection phase (P);
      
      defining;
      
      for at least one variable of measurement, several associated thresholds,and different coercion means corresponding to each of said thresholds,and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), at least one chosen variable of measurement to which must be associated several thresholds corresponding to different limits of usage of the functionality,by choosing at least two thresholds associated to the chosen variable of measurement,and by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the crossings of the various thresholds are taken into account differently, by means of the second execution part (2peu),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      in the case where the crossing of a first threshold is detected, enjoining the protected software (2p) not to use the corresponding functionality anymore,and in the case where the crossing of a second threshold is detected, making ineffective the corresponding functionality and/or at least one portion of the protected software (2p).
  - 19. Process according to claim 17, comprising:
    - during the protection phase (P);
      
      defining refilling means enabling to credit at least one software functionality monitored by a variable of measurement with at least one additional usage,constructing the exploitation means also allowing the unit (6) to implement the refilling means,and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), at least one chosen variable of measurement enabling to limit the usage of a functionality and which must be able to be credited with at least one additional usage,and by modifying at least one chosen portion, this modification being such that during a phase called of refilling, at least one additional usage of at least one functionality corresponding to a chosen variable of measurement can be credited,and during the phase of refilling;
      
      reactualizing at least one chosen variable of measurement and/or at least one associated threshold, so as to allow at least one additional usage of the functionality.
  - 20. Process according to claim 16, comprising:
    - during the protection phase (P);
      
      defining;
      
      as software execution characteristic liable to be monitored, a profile of software usage,and as criterion to abide by, at least one feature of software execution,and modifying the protected software (2p);
      
      by choosing as software execution characteristic to monitor at least one profile of software usage,by choosing at least one feature of execution by which at least one chosen profile of usage must abide,and by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the second execution part (2peu) abides by all the chosen features of execution,and during the usage phase (U) in the presence of the unit (6), and in the case where it is detected that at least one feature of execution is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 21. Process according to claim 20, comprising:
    - during the protection phase (P);
      
      defining;
      
      an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions,as profile of usage, the chaining of the instructions,as feature of execution, an expected chaining for the execution of the instructions, as detection means (17), means enabling to detect that the chaining of the instructions does not correspond to the expected one,and as coercion means (18), means enabling to inform the data processing system (3) and/or to modify the functioning of the portion of protected software (2p) when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6) to execute the instructions of the instructions set, the execution of said instructions being triggered by the execution in the data processing system (3), of the instructions commands,and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps);
      
      by transforming the elementary functions into instructions,by specifying the chaining by which must abide at least some of the instructions during their execution in the unit (6),and by transforming the elementary commands into instructions commands corresponding to the instructions used,and during the usage phase (U), in the presence of the unit (6), in the case where it is detected that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 22. Process according to claim 21, comprising:
    - during the protection phase (P);
      
      defining;
      
      as instructions set, an instructions set whose at least some instructions work with registers and use at least one operand with the intention of returning a result,for at least some of the instructions working with registers;
      
      a part (PF) defining the functionality of the instruction,and a part defining the expected chaining for the execution of the instructions and including bits fields corresponding to;
      
      an identification field of the instruction (CII),and for each operand of the instruction;
      
      a flag field (CD_k),and an expected identification field (CIP_k) of the operand,for each register belonging to the exploitation means and used by the instructions set, a generated identification field (CIG_v) in which is automatically memorized the identification of the last instruction which has returned its result in said register,as detection means (17), means enabling, during the execution of an instruction, for each operand, when the flag field (CD_k) imposes it, to check the equality of the generated identification field (CIG_v) corresponding to the register used by said operand, and the expected identification field (CIP_k) of the origin of said operand,and as coercion means (18), means enabling to modify the result of the instructions, if at least one of the checked equalities is false.
  - 23. Process according to claim 15, comprising:
    - during the protection phase (P);
      
      defining;
      
      an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions,that the chaining of the instructions is liable to be monitored at least in part in the unit (6),that the expected chaining must be abided by during the execution of software,detection means (17) to implement in the unit (6) and enabling to detect that the chaining of the instructions does not abide by the expected chaining,and coercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or to modify the execution of a software, when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6), to execute the instructions of the instructions set and to implement the detection means (17) and the coercion means (18),and modifying the protected software (2p);
      
      by modifying at least one chosen portion of the source of the protected software (2ps);
      
      by transforming the elementary functions into instructions,by choosing in the source of the protected software (2ps), instructions whose chaining is to be monitored,by specifying the expected chaining by which at least some of the chosen instructions must abide during their execution in the unit (6),and by transforming the elementary commands into instructions commands corresponding to the instructions used,this modification being such that during the execution of the protected software (2p), the chaining of the instructions is monitored by means of the second execution part (2peu), and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and by producing the second object part (2pou) of the protected software (2p) containing the exploitation means also enabling the execution of the instructions of the instructions set and also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the chaining of the instructions is monitored and the fact that the expected chaining is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      as long as the chaining of the instructions corresponds to the expected chaining in all the modified portions of the protected software (2p), enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally,and in the case where it is detected in a portion of the protected software (2p) that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 24. Process according to one of the claims 1, 2, 3, 10, 4, 7, 11, 14, 5, 8, 12, 15, 6, 9, 13 or 23, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing, in the source of the protected software (2ps), at least one conditional branch carried out in at least one chosen algorithmic processing,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), the functionality of at least one chosen conditional branch is executed, by means of the second execution part (2peu), in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the functionality of at least one chosen conditional branch is executed in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the functionality of at least one chosen conditional branch is executed,and during the usage phase (U);
      
      in the presence of the unit (6) and each time a portion of the first execution part (2pes) imposes it, executing the functionality of at least one conditional branch in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6) and in spite of the request by a portion of the first execution part (2pes) to execute the functionality of a conditional branch in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that consequently, the protected software (2p) is not completely functional.
  - 25. Process according to claim 24, comprising, during the protection phase (P), modifying the protected software (2p):
    - by choosing, in the source of the protected software (2ps), at least one series of chosen conditional branches,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), the overall functionality of at least one chosen series of conditional branches is executed, by means of the second execution part (2peu), in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the functionality of at least one chosen series of conditional branches is executed in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the overall functionality of at least one chosen series of conditional branches is executed.
  - 26. Process according to one of the claims 1, 2, 3, 10, 4, 7, 11, 14, 5, 8, 12, 15, 6, 9, 13 or 23, comprising splitting the protection phase (P) into a prior protection sub-phase (P1), independent of the software to protect and a subsequent protection sub-phase (P2), dependent of the software to protect.
  - 27. Process according to claim 26, comprising, during the prior protection sub-phase (P1), making intervene a definitions stage (S11) during which are carried out all the definitions.
  - 28. Process according to claim 27, comprising, after the definitions stage (S11), making intervene a construction stage (S12) during which are constructed the exploitation means.
  - 29. Process according to claim 28, comprising, after the construction stage (S12), making intervene a pre-customization stage (S13), comprising uploading to a blank unit (60), at least a part of the exploitation means with the intention of obtaining a pre-customized unit (66).
  - 30. Process according to claim 29, comprising splitting the subsequent protection sub-phase (P2), into:
    - a creation stage (S21) during which the protected software (2p) is created, from the vulnerable software (2v),possibly, a modification stage (S22) during which the protected software (2p) is modified,and a customization stage (S23) during which;
      
      the second object part (2pou) of the protected software (2p) containing the exploitation means is uploaded to at least one blank unit (60) with the intention of obtaining at least one unit (6),or a part of the second object part (2pou) of the protected software (2p) possibly containing the exploitation means is uploaded to at least one pre-customized unit (66) with the intention of obtaining at least one unit (6).
  - 31. Process according to claim 30, comprising, during the creation stage (S21) and possibly during the modification stage (S22), using at least one tool which help generate protected software or which automate software protection.
  - 32. System for the implementation of the process in accordance with claim 30, characterized in that it includes a program development unit used to create or modify a protected software (2p).
  - 33. System for the implementation of the process in accordance with claim 30, characterized in that it includes a customization unit (45) enabling to upload:
    - the second object part (2pou) to at least one blank unit (60), with the intention of obtaining at least one unit (6),or a part of the second object part (2pou) to at least one pre-customized unit (66), with the intention of obtaining at least one unit (6).
  - 34. Unit (6) enabling to execute a protected software (2p) and to prevent its unauthorized usage, characterized in that it contains the second object part (2pou) of the protected software (2p) uploaded using a customization unit (45) in accordance with claim 33.
  - 35. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p), characterized in that the distribution set of the protected software includes:
    - a first distribution part (2pds) containing the first object part (2pos) and designed to work in a data processing system (3),and a second distribution part (2pdu) having the form;
      
      of a blank unit (60),or of a pre-customized unit (66), able after upload of customization information, to transform into a unit (6) in accordance with claim 34,or of a unit (6) in accordance with claim 34.
  - 36. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p) according to claim 35, characterized in that the first distribution part (2pds) has the form of a physical distribution medium, a CDROM for instance, or the form of files distributed through a network.
  - 37. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p) according to claim 35, characterized in that the second distribution part (2pdu), having the form of blank units (60), of pre-customized units (66) or of units (6), includes at least one chip card (7).
  - 38. Processing and memorizing unit characterized in that it contains the part of the second object part (2pou) necessary to transform a pre-customized unit (66) into a unit (6) in accordance with claim 34.
  - 39. Set of processing and memorizing units characterized in that the processing and memorizing units used jointly, contain the part of the second object part (2pou) necessary to transform a pre-customized unit (66) into a unit (6) in accordance with claim 34.
  - 40. Set of units (6), characterized in that the second object part (2pou) of the protected software (2p), uploaded using a customization unit (45) in accordance with claim 33, is divided out between several processing and memorizing units so that their joint use enables to execute the protected software (2p).
  - 41. System for the implementation of the process in accordance with claim 29, characterized in that it includes a pre-customization unit (30) enabling to upload at least a part of the exploitation means to at least one blank unit (60), with the intention of obtaining at least one pre-customized unit (66).
  - 42. Pre-customized unit (66), characterized in that it is obtained by the system in accordance with claim 41.
  - 43. System for the implementation of the process in accordance with claim 28, characterized in that it includes a program development unit, used, during the construction stage (S12), to carry out the construction of the exploitation means intended for the unit (6), taking into account the definitions intervened during the definitions stage (S11).
  - 44. Process according to claim 27, comprising, during the prior protection sub-phase (P1), making intervene a tools making stage (S14) during which are made tools enabling to help generate protected software or to automate software protection.
  - 45. System for the implementation of the process in accordance with claim 44, characterized in that it includes a program development unit, used to carry out during the tools making stage (S14), the making of tools which help generate protected software or which automate software protection.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Validy Net, Inc.
Original Assignee
SAS VALIDY
Inventors
Cuenod, Jean-Christophe, Sgro, Gilles
Primary Examiner(s)
Moazzami; Nasser
Assistant Examiner(s)
COLIN, CARL G

Application Number

US10/178,915
Publication Number

US 20030046569A1
Time in Patent Office

2,086 Days
Field of Search

713/187
US Class Current

713/193
CPC Class Codes

G06F 21/123 by using dedicated hardware...

G06F 21/125 by manipulating the program...

Method to protect software against unwanted use with a “renaming” principle

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

45 Claims

Specification

Solutions

Use Cases

Quick Links

Method to protect software against unwanted use with a “renaming” principle

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

45 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links