Method to protect software against unwanted use with a “elementary functions” principle

US 7,434,064 B2
Filed: 06/25/2002
Issued: 10/07/2008
Est. Priority Date: 08/01/2001
Status: Active Grant

First Claim

Patent Images

1. Process to protect, using at least one blank unit (60) including at least memorization means (15) and processing means (16), a vulnerable software (2v) against its unauthorized usage, said vulnerable software (2v) being produced from a source (2vs) and working on a data processing system (3), said protection process comprising:

during a protection phase (P);

defining;

a set of elementary functions whose elementary functions are liable to be executed in a unit (6),and a set of elementary commands for said set of elementary functions, said elementary commands being liable to be executed in the data processing system (3) and to trigger the execution in a unit (6), of the elementary functions,constructing exploitation means enabling to transform the blank unit (60) into a unit (6) able to execute the elementary functions of said set, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands,creating a protected software (2p);

by choosing, at least one algorithmic processing which, during the execution of the vulnerable software (2v), uses at least one operand and enables to obtain at least one result,by choosing at least one portion of the source of the vulnerable software (2vs) containing at least one chosen algorithmic processing,by producing a source of the protected software (2ps) from the source of the vulnerable software (2vs), by modifying at least one chosen portion of the source of the vulnerable software (2vs) to obtain at least one modified portion of the source of the protected software (2ps), this modification being such that;

during the execution of the protected software (2p) a first execution part (2pes) is executed in the data processing system (3) and a second execution part (2peu) is executed in a unit (6), obtained from the blank unit (60) after upload of information,the second execution part (2peu) executes at least the functionality of at least one chosen algorithmic processing,at least one chosen algorithmic processing is split so that during the execution of the protected software (2p), said algorithmic processing is executed by means of the second execution part (2peu), using elementary functions,for at least one chosen algorithmic processing, elementary commands are integrated to the source of the protected software (2ps), so that during the execution of the protected software (2p), each elementary command is executed by the first execution part (2pes) and triggers in the unit (6), the execution by means of the second execution part (2peu), of an elementary function,and a sequence of the elementary commands is chosen among the set of sequences allowing the execution of the protected software (2p),and by producing;

a first object part (2pos) of the protected software (2p), from the source of the protected software (2ps), said first object part (2pos) being such that during the execution of the protected software (2p), appears a first execution part (2pes) which is executed in the data processing system (3) and whose at least a portion takes into account that the elementary commands are executed according to the chosen sequence,and a second object part (2pou) of the protected software (2p), containing the exploitation means, said second object part (2pou) being such that, after upload to the blank unit (60) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are executed the elementary functions triggered by the first execution part (2pes),and uploading the second object part (2pou) to the blank unit (60), with the intention of obtaining the unit (6),and during a usage phase (U) during which the protected software (2p) is executed;

in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional,wherein the process further comprises;

during the protection phase (P);

defining;

at least one software execution characteristic, liable to be monitored at least in part in the unit (6),

at least one criterion to abide by for at least one software execution characteristic,detection means (17) to implement in the unit (6) and enabling to detect that at least one software execution characteristic does not abide by at least one associated criterion, andcoercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or modify the execution of a software, when at least one criterion is not abided by,constructing the exploitation means enabling the unit (6), to also implement the detection means (17) and the coercion means (18), andmodifying the protected software (2p);

by choosing at least one software execution characteristic to monitor, among the software execution characteristics liable to be monitored,by choosing at least one criterion to abide by for at least one chosen software execution characteristic,by choosing in the source of the protected software (2ps), elementary functions for which at least one chosen software execution characteristic is to be monitored,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen execution characteristic is monitored by means of the second execution part (2peu), and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p), andby producing the second object part (2pou) of the protected software (2p) containing the exploitation means also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), at least one software execution characteristic is monitored and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p), andduring the usage phase (U);

in the presence of the unit (6);

as long as all the criteria corresponding to all the monitored execution characteristics of all the modified portions of the protected software (2p) are abided by, enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally, andif at least one of the criteria corresponding to a monitored execution characteristic of a portion of the protected software (2p) is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified,wherein the process further comprises;

during the protection phase (P);

defining;

as software execution characteristic liable to be monitored, a profile of software usage, andas criterion to abide by, at least one feature of software execution, andmodifying the protected software (2p);

by choosing as software execution characteristic to monitor at least one profile of software usage,

by choosing at least one feature of execution by which at least one chosen profile of usage must abide, and

by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the second execution part (2peu) abides by all the chosen features of execution, andduring the usage phase (U) in the presence of the unit (6), and in the case where it is detected that at least one feature of execution is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified,wherein the process further comprises;

during the protection phase (P);

defining;

an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions, as profile of usage, the chaining of the instructions,as feature of execution, an expected chaining for the execution of the instructions,as detection means (17), means enabling to detect that the chaining of the instructions does not correspond to the expected one, andas coercion means (18), means enabling to inform the data processing system (3) and/or to modify the functioning of the portion of protected software (2p) when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6) to execute the instructions of the instructions set, the execution of said instructions being triggered by the execution in the data processing system (3), of the instructions commands, andmodifying the protected software (2p);

by modifying at least one chosen portion of the source of the protected software (2ps);

by transforming the elementary functions into instructions,by specifying the chaining by which must abide at least some of the instructions during their execution in the unit (6), andby transforming the elementary commands into instructions commands corresponding to the instructions used, andduring the usage phase (U), in the presence of the unit (6), in the case where it is detected that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified, andwherein the process further comprises;

during the protection phase (P);

defining;

as instructions set, an instructions set whose at least some instructions work with registers and use at least one operand with the intention of returning a result,for at least some of the instructions working with registers;

a part (PF) defining the functionality of the instruction, anda part defining the expected chaining for the execution of the instructions and including bits fields corresponding to;

an identification field of the instruction (CII), and

for each operand of the instruction;

a flag field (CDk), and

an expected identification field (CIPk) of the operand,

for each register belonging to the exploitation means and used by the instructions set, a generated identification field (CIGv) in which is automatically memorized the identification of the last instruction which has returned its result in said register,as detection means (17), means enabling, during the execution of an instruction, for each operand, when the flag field (CDk) imposes it, to check the equality of the generated identification field (CIGv) corresponding to the register used by said operand, and the expected identification field (CIPk) of the origin of said operand, andas coercion means (18), means enabling to modify the result of the instructions, if at least one of the checked equalities is false.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention concerns a process to protect a vulnerable software working on a data processing system against its unauthorized usage using a processing and memorizing unit. The process comprises defining: 1) a set of elementary functions whose elementary functions are liable to be executed in a processing and memorizing unit 2) a set of elementary commands, said elementary commands being liable to be executed in the data processing system and to trigger the execution in a processing and memorizing unit, of the elementary functions 3) exploitation means designed to be used in a processing and memorizing unit during a usage phase, and enabling to execute the elementary functions of said set.

13 Citations

View as Search Results

35 Claims

1. Process to protect, using at least one blank unit (60) including at least memorization means (15) and processing means (16), a vulnerable software (2v) against its unauthorized usage, said vulnerable software (2v) being produced from a source (2vs) and working on a data processing system (3), said protection process comprising:
- during a protection phase (P);
  
  defining;
  
  a set of elementary functions whose elementary functions are liable to be executed in a unit (6),and a set of elementary commands for said set of elementary functions, said elementary commands being liable to be executed in the data processing system (3) and to trigger the execution in a unit (6), of the elementary functions,constructing exploitation means enabling to transform the blank unit (60) into a unit (6) able to execute the elementary functions of said set, the execution of said elementary functions being triggered by the execution in the data processing system (3), of the elementary commands,creating a protected software (2p);
  
  by choosing, at least one algorithmic processing which, during the execution of the vulnerable software (2v), uses at least one operand and enables to obtain at least one result,by choosing at least one portion of the source of the vulnerable software (2vs) containing at least one chosen algorithmic processing,by producing a source of the protected software (2ps) from the source of the vulnerable software (2vs), by modifying at least one chosen portion of the source of the vulnerable software (2vs) to obtain at least one modified portion of the source of the protected software (2ps), this modification being such that;
  
  during the execution of the protected software (2p) a first execution part (2pes) is executed in the data processing system (3) and a second execution part (2peu) is executed in a unit (6), obtained from the blank unit (60) after upload of information,the second execution part (2peu) executes at least the functionality of at least one chosen algorithmic processing,at least one chosen algorithmic processing is split so that during the execution of the protected software (2p), said algorithmic processing is executed by means of the second execution part (2peu), using elementary functions,for at least one chosen algorithmic processing, elementary commands are integrated to the source of the protected software (2ps), so that during the execution of the protected software (2p), each elementary command is executed by the first execution part (2pes) and triggers in the unit (6), the execution by means of the second execution part (2peu), of an elementary function,and a sequence of the elementary commands is chosen among the set of sequences allowing the execution of the protected software (2p),and by producing;
  
  a first object part (2pos) of the protected software (2p), from the source of the protected software (2ps), said first object part (2pos) being such that during the execution of the protected software (2p), appears a first execution part (2pes) which is executed in the data processing system (3) and whose at least a portion takes into account that the elementary commands are executed according to the chosen sequence,and a second object part (2pou) of the protected software (2p), containing the exploitation means, said second object part (2pou) being such that, after upload to the blank unit (60) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which are executed the elementary functions triggered by the first execution part (2pes),and uploading the second object part (2pou) to the blank unit (60), with the intention of obtaining the unit (6),and during a usage phase (U) during which the protected software (2p) is executed;
  
  in the presence of the unit (6) and each time an elementary command contained in a portion of the first execution part (2pes) imposes it, executing the corresponding elementary function in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to trigger the execution of an elementary function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional,wherein the process further comprises;
  
  during the protection phase (P);
  
  defining;
  
  at least one software execution characteristic, liable to be monitored at least in part in the unit (6),
  
  at least one criterion to abide by for at least one software execution characteristic,detection means (17) to implement in the unit (6) and enabling to detect that at least one software execution characteristic does not abide by at least one associated criterion, andcoercion means (18) to implement in the unit (6) and enabling to inform the data processing system (3) and/or modify the execution of a software, when at least one criterion is not abided by,constructing the exploitation means enabling the unit (6), to also implement the detection means (17) and the coercion means (18), andmodifying the protected software (2p);
  
  by choosing at least one software execution characteristic to monitor, among the software execution characteristics liable to be monitored,by choosing at least one criterion to abide by for at least one chosen software execution characteristic,by choosing in the source of the protected software (2ps), elementary functions for which at least one chosen software execution characteristic is to be monitored,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen execution characteristic is monitored by means of the second execution part (2peu), and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p), andby producing the second object part (2pou) of the protected software (2p) containing the exploitation means also implementing the detection means (17) and the coercion means (18), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), at least one software execution characteristic is monitored and the fact that a criterion is not abided by leads to the data processing system (3) being informed and/or to a modification of the execution of the protected software (2p), andduring the usage phase (U);
  
  in the presence of the unit (6);
  
  as long as all the criteria corresponding to all the monitored execution characteristics of all the modified portions of the protected software (2p) are abided by, enabling said portions of the protected software (2p) to work nominally and consequently enabling the protected software (2p) to work nominally, andif at least one of the criteria corresponding to a monitored execution characteristic of a portion of the protected software (2p) is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified,wherein the process further comprises;
  
  during the protection phase (P);
  
  defining;
  
  as software execution characteristic liable to be monitored, a profile of software usage, andas criterion to abide by, at least one feature of software execution, andmodifying the protected software (2p);
  
  by choosing as software execution characteristic to monitor at least one profile of software usage,
  
  by choosing at least one feature of execution by which at least one chosen profile of usage must abide, and
  
  by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the second execution part (2peu) abides by all the chosen features of execution, andduring the usage phase (U) in the presence of the unit (6), and in the case where it is detected that at least one feature of execution is not abided by, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified,wherein the process further comprises;
  
  during the protection phase (P);
  
  defining;
  
  an instructions set whose instructions are liable to be executed in the unit (6),a set of instructions commands for said instructions set, said instructions commands being liable to be executed in the data processing system (3) and to trigger in the unit (6) the execution of the instructions, as profile of usage, the chaining of the instructions,as feature of execution, an expected chaining for the execution of the instructions,as detection means (17), means enabling to detect that the chaining of the instructions does not correspond to the expected one, andas coercion means (18), means enabling to inform the data processing system (3) and/or to modify the functioning of the portion of protected software (2p) when the chaining of the instructions does not correspond to the expected one,constructing the exploitation means also enabling the unit (6) to execute the instructions of the instructions set, the execution of said instructions being triggered by the execution in the data processing system (3), of the instructions commands, andmodifying the protected software (2p);
  
  by modifying at least one chosen portion of the source of the protected software (2ps);
  
  by transforming the elementary functions into instructions,by specifying the chaining by which must abide at least some of the instructions during their execution in the unit (6), andby transforming the elementary commands into instructions commands corresponding to the instructions used, andduring the usage phase (U), in the presence of the unit (6), in the case where it is detected that the chaining of the instructions executed in the unit (6) does not correspond to the expected one, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified, andwherein the process further comprises;
  
  during the protection phase (P);
  
  defining;
  
  as instructions set, an instructions set whose at least some instructions work with registers and use at least one operand with the intention of returning a result,for at least some of the instructions working with registers;
  
  a part (PF) defining the functionality of the instruction, anda part defining the expected chaining for the execution of the instructions and including bits fields corresponding to;
  
  an identification field of the instruction (CII), and
  
  for each operand of the instruction;
  
  a flag field (CDk), and
  
  an expected identification field (CIPk) of the operand,
  
  for each register belonging to the exploitation means and used by the instructions set, a generated identification field (CIGv) in which is automatically memorized the identification of the last instruction which has returned its result in said register,as detection means (17), means enabling, during the execution of an instruction, for each operand, when the flag field (CDk) imposes it, to check the equality of the generated identification field (CIGv) corresponding to the register used by said operand, and the expected identification field (CIPk) of the origin of said operand, andas coercion means (18), means enabling to modify the result of the instructions, if at least one of the checked equalities is false.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35)
- - 2. Process according to claim 1, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing at least one variable used in at least one chosen algorithmic processing, which during the execution of the protected software (2p), partially defines the state of the protected software (2p),by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), at least one chosen variable or at least one copy of chosen variable resides in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), at least one portion of the first execution part (2pes) takes also into account that at least one variable or at least one copy of variable resides in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which at least one chosen variable, or at least one copy of chosen variable resides too in the unit (6),and during the usage phase (U);
      
      in the presence of the unit (6) each time a portion of the first execution part (2pes) imposes it, using a variable or a copy of variable residing in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes) to use a variable or a copy of variable residing in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently the protected software (2p) is not completely functional.
  - 3. Process according to claim 1, to limit usage of a protected software (2p), comprising:
    - during the protection phase (P);
      
      defining;
      
      as software execution characteristic liable to be monitored, a variable of measurement of the usage of a functionality of a software,as criterion to abide by, at least one threshold associated to each variable of measurement,and actualization means enabling to update at least one variable of measurement,constructing the exploitation means enabling the unit (6) to also implement the actualization means,and modifying the protected software (2p);
      
      by choosing as software execution characteristic to monitor, at least one variable of measurement of the usage of at least one functionality of a software, by choosing;
      
      at least one functionality of the protected software (2p) whose usage is liable to be monitored using a variable of measurement,at least one variable of measurement used to quantify the usage of said functionality,at least one threshold associated to a chosen variable of measurement corresponding to a limit of usage of said functionality,and at least one method of update of a chosen variable of measurement depending on the usage of said functionality,and by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the variable of measurement is actualized by means of the second execution part (2peu) depending on the usage of said functionality, and at least one threshold crossing is taken into account,and during the usage phase (U), in the presence of the unit (6), and in the case where at least one threshold crossing corresponding to at least one limit of usage is detected, informing the data processing system (3) of it and/or modifying the functioning of the portion of the protected software (2p), so that the functioning of the protected software (2p) is modified.
  - 4. Process according to claim 3, comprising:
    - during the protection phase (P);
      
      defining;
      
      for at least one variable of measurement, several associated thresholds,and different coercion means corresponding to each of said thresholds, and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), at least one chosen variable of measurement to which must be associated several thresholds corresponding to different limits of usage of the functionality,by choosing at least two thresholds associated to the chosen variable of measurement,and by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that, during the execution of the protected software (2p), the crossings of the various thresholds are taken into account differently, by means of the second execution part (2peu),and during the usage phase (U);
      
      in the presence of the unit (6);
      
      in the case where the crossing of a first threshold is detected, enjoining the protected software (2p) not to use the corresponding functionality anymore,and in the case where the crossing of a second threshold is detected, making ineffective the corresponding functionality and/or at least one portion of the protected software (2p).
  - 5. Process according to claim 3, comprising:
    - during the protection phase (P);
      
      defining refilling means enabling to credit at least one software functionality monitored by a variable of measurement with at least one additional usage,constructing the exploitation means also allowing the unit (6) to implement the refilling means,and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), at least one chosen variable of measurement enabling to limit the usage of a functionality and which must be able to be credited with at least one additional usage,and by modifying at least one chosen portion, this modification being such that during a phase called of refilling, at least one additional usage of at least one functionality corresponding to a chosen variable of measurement can be credited, and during the phase of refilling;
      
      reactualizing at least one chosen variable of measurement and/or at least one associated threshold, so as to allow at least one additional usage of the functionality.
  - 6. Process according to claim 1 comprising:
    - during the protection phase (P);
      
      defining;
      
      as a triggering command, an elementary command,as a dependent function, an elementary function,as an order, at least one argument for a triggering command, corresponding at least in part to the information transmitted by the data processing system (3) to the unit (6), so as to trigger the execution of the corresponding dependent function,a method of renaming of the orders enabling to rename the orders so as to obtain triggering commands with renamed orders,and restoring means (20) designed to be used in the unit (6) during the usage phase (U), and enabling to restore the dependent function to execute, from the renamed order,constructing exploitation means enabling the unit (6) to also implement the restoring means,and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), triggering commands,by modifying at least one chosen portion of the source of the protected software (2ps) by renaming the orders of the chosen triggering commands, so as to conceal the identity of the corresponding dependent functions,and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the triggering commands with renamed orders are executed,and the second object part (2pou) of the protected software (2p) containing the exploitation means also implementing the restoring means (20), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the identity of the dependent functions whose execution is triggered by the first execution part (2pes) is restored by means of the second execution part (2peu), and the dependent functions are executed by means of the second execution part (2peu),and during the usage phase (U);
      
      in the presence of the unit (6) and each time a triggering command with renamed order, contained in a portion of the first execution part (2pes) imposes it, restoring in the unit (6), the identity of the corresponding dependent function and executing it, so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of a dependent function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 7. Process according to claim 6, comprising:
    - during the protection phase (P);
      
      defining for at least one dependent function, a family of dependent functions algorithmically equivalent, but triggered by triggering commands whose renamed orders are different,and modifying the protected software (2p);
      
      by choosing, in the source of the protected software (2ps) at least one triggering command with renamed order,and by modifying at least one chosen portion of the source of the protected software (2ps) by replacing at least the renamed order of one chosen triggering command with renamed order, with another renamed order, triggering a dependent function of the same family.
  - 8. Process according to claim 7, comprising:
    - during the protection phase (P), defining, for at least one dependent function, a family of algorithmically equivalent dependent functions;
      
      by concatenating a field of noise to the information defining the functional part of the dependent function to execute in the unit (6),or by using the identification field of the instruction (CII) and the expected identification fields (CIPk) of the operands.
  - 9. Process according to claim 6, 7 or 8, comprising:
    - during the protection phase (P);
      
      defining;
      
      as method of renaming of the orders, a ciphering method to cipher the orders,and as restoring means (20), means implementing a deciphering method to decipher the renamed orders and thus restore the identity of the dependent functions to execute in the unit (6).
  - 10. Process according to claim 1 comprising:
    - during the protection phase (P);
      
      defining;
      
      as a triggering command, an instruction command,as a dependent function, an instruction,as an order, at least one argument for a triggering command, corresponding at least in part to the information transmitted by the data processing system (3) to the unit (6), so as to trigger the execution of the corresponding dependent function,a method of renaming of the orders enabling to rename the orders so as to obtain triggering commands with renamed orders,and restoring means (20) designed to be used in the unit (6) during the usage phase (U), and enabling to restore the dependent function to execute, from the renamed order,constructing exploitation means enabling the unit (6) to also implement the restoring means,and modifying the protected software (2p);
      
      by choosing in the source of the protected software (2ps), triggering commands,by modifying at least one chosen portion of the source of the protected software (2ps) by renaming the orders of the chosen triggering commands, so as to conceal the identity of the corresponding dependent functions,and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the triggering commands with renamed orders are executed,and the second object part (2pou) of the protected software (2p) containing the exploitation means also implementing the restoring means (20), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), the identity of the dependent functions whose execution is triggered by the first execution part (2pes) is restored by means of the second execution part (2peu), and the dependent functions are executed by means of the second execution part (2peu),and during the usage phase (U);
      
      in the presence of the unit (6) and each time a triggering command with renamed order, contained in a portion of the first execution part (2pes) imposes it, restoring in the unit (6), the identity of the corresponding dependent function and executing it, so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6), in spite of the request by a portion of the first execution part (2pes), to trigger the execution of a dependent function in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that, consequently, the protected software (2p) is not completely functional.
  - 11. Process according to claim 10, comprising:
    - during the protection phase (P);
      
      defining for at least one dependent function, a family of dependent functions algorithmically equivalent, but triggered by triggering commands whose renamed orders are different,and modifying the protected software (2p);
      
      by choosing, in the source of the protected software (2ps) at least one triggering command with renamed order,and by modifying at least one chosen portion of the source of the protected software (2ps) by replacing at least the renamed order of one chosen triggering command with renamed order, with another renamed order, triggering a dependent function of the same family.
  - 12. Process according to claim 11, comprising:
    - during the protection phase (P), defining, for at least one dependent function, a family of algorithmically equivalent dependent functions;
      
      by concatenating a field of noise to the information defining the functional part of the dependent function to execute in the unit (6),or by using the identification field of the instruction (CII) and the expected identification fields (CIPk) of the operands.
  - 13. Process according to claim 10, 11 or 12, comprising:
    - during the protection phase (P);
      
      defining;
      
      as method of renaming of the orders, a ciphering method to cipher the orders,and as restoring means (20), means implementing a deciphering method to decipher the renamed orders and thus restore the identity of the dependent functions to execute in the unit (6).
  - 14. Process according to one of the claims 1, 2, 3, 4, 5, 6, 7, 8, 10, 11 or 12, comprising:
    - during the protection phase (P);
      
      modifying the protected software (2p);
      
      by choosing, in the source of the protected software (2ps), at least one conditional branch carried out in at least one chosen algorithmic processing,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), the functionality of at least one chosen conditional branch is executed, by means of the second execution part (2peu), in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the functionality of at least one chosen conditional branch is executed in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the functionality of at least one chosen conditional branch is executed,and during the usage phase (U);
      
      in the presence of the unit (6) and each time a portion of the first execution part (2pes) imposes it, executing the functionality of at least one conditional branch in the unit (6), so that said portion is executed correctly and that, consequently, the protected software (2p) is completely functional,and in the absence of the unit (6) and in spite of the request by a portion of the first execution part (2pes) to execute the functionality of a conditional branch in the unit (6), not being able to fulfill said request correctly, so that at least said portion is not executed correctly and that consequently, the protected software (2p) is not completely functional.
  - 15. Process according to claim 14, comprising, during the protection phase (P), modifying the protected software (2p):
    - by choosing, in the source of the protected software (2ps), at least one series of chosen conditional branches,by modifying at least one chosen portion of the source of the protected software (2ps), this modification being such that during the execution of the protected software (2p), the overall functionality of at least one chosen series of conditional branches is executed, by means of the second execution part (2peu), in the unit (6),and by producing;
      
      the first object part (2pos) of the protected software (2p), said first object part (2pos) being such that during the execution of the protected software (2p), the functionality of at least one chosen series of conditional branches is executed in the unit (6),and the second object part (2pou) of the protected software (2p), said second object part (2pou) being such that, after upload to the unit (6) and during the execution of the protected software (2p), appears the second execution part (2peu) by means of which the overall functionality of at least one chosen series of conditional branches is executed.
  - 16. Process according to one of the claims 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, or 12, comprising splitting the protection phase (P) into a prior protection sub-phase (P1), independent of the software to protect and a subsequent protection sub-phase (P2), dependent of the software to protect.
  - 17. Process according to claim 16, comprising, during the prior protection sub-phase (P1), making intervene a definitions stage (S11) during which are carried out all the definitions.
  - 18. Process according to claim 17, comprising, after the definitions stage (S11), making intervene a construction stage (S12) during which are constructed the exploitation means.
  - 19. Process according to claim 18, comprising, after the construction stage (S12), making intervene a pre-customization stage (S13), comprising uploading to a blank unit (60), at least a part of the exploitation means with the intention of obtaining a pre-customized unit (66).
  - 20. Process according to claim 19, comprising splitting the subsequent protection sub-phase (P2), into:
    - a creation stage (S21) during which the protected software (2p) is created, from the vulnerable software (2v),possibly, a modification stage (S22) during which the protected software (2p) is modified,and a customization stage (S23) during which;
      
      the second object part (2pou) of the protected software (2p) containing the exploitation means is uploaded to at least one blank unit (60) with the intention of obtaining at least one unit (6),or a part of the second object part (2pou) of the protected software (2p) possibly containing the exploitation means is uploaded to at least one pre-customized unit (66) with the intention of obtaining at least one unit (6).
  - 21. Process according to claim 20, comprising, during the creation stage (S21) and possibly during the modification stage (S22), using at least one tool which help generate protected software or which automate software protection.
  - 22. System for the implementation of the process in accordance with claim 20, characterized in that it includes a program development unit used to create or modify a protected software (2p).
  - 23. System for the implementation of the process in accordance with claim 20, characterized in that it includes a customization unit (45) enabling to upload:
    - the second object part (2pou) to at least one blank unit (60), with the intention of obtaining at least one unit (6),or a part of the second object part (2pou) to at least one pre-customized unit (66), with the intention of obtaining at least one unit (6).
  - 24. Unit (6) enabling to execute a protected software (2p) and to prevent its unauthorized usage, characterized in that it contains the second object part (2pou) of the protected software (2p) uploaded using a customization unit (45) in accordance with claim 23.
  - 25. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p), characterized in that the distribution set of the protected software includes:
    - a first distribution part (2pds) containing the first object part (2pos) and designed to work in a data processing system (3),and a second distribution part (2pdu) having the form;
      
      of a blank unit (60),or of a pre-customized unit (66), able after upload of customization information, to transform into a unit (6) in accordance with claim 24,or of a unit (6) in accordance with claim 24.
  - 26. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p) according to claim 25, characterized in that the first distribution part (2pds) has the form of a physical distribution medium, a CDROM for instance, or the form of files distributed through a network.
  - 27. Computer readable storage mediums containing a distribution set (2pd) of a protected software (2p) according to claim 25, characterized in that the second distribution part (2pdu), having the form of blank units (60), of pre-customized units (66) or of units (6), includes at least one chip card (7).
  - 28. Processing and memorizing unit characterized in that it contains the part of the second object part (2pou) necessary to transform a pre-customized unit (66) into a unit (6) in accordance with claim 24.
  - 29. Set of processing and memorizing units characterized in that the processing and memorizing units used jointly, contain the part of the second object part (2pou) necessary to transform a pre-customized unit (66) into a unit (6) in accordance with claim 24.
  - 30. Set of units (6), characterized in that the second object part (2pou) of the protected software (2p), uploaded using a customization unit (45) in accordance with claim 23, is divided out between several processing and memorizing units so that their joint use enables to execute the protected software (2p).
  - 31. System for the implementation of the process in accordance with claim 19, characterized in that it includes a pre-customization unit (30) enabling to upload at least a part of the exploitation means to at least one blank unit (60), with the intention of obtaining at least one pre-customized unit (66).
  - 32. Pre-customized unit (66), characterized in that it is obtained by the system in accordance with claim 31.
  - 33. System for the implementation of the process in accordance with claim 18, characterized in that it includes a program development unit, used, during the construction stage (S12), to carry out the construction of the exploitation means intended for the unit (6), taking into account the definitions intervened during the definitions stage (S11).
  - 34. Process according to claim 17, comprising, during the prior protection sub-phase (P1), making intervene a tools making stage (S14) during which are made tools enabling to help generate protected software or to automate software protection.
  - 35. System for the implementation of the process in accordance with claim 34, characterized in that it includes a program development unit, used to carry out during the tools making stage (S14), the making of tools which help generate protected software or which automate software protection.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Validy Net, Inc.
Original Assignee
SAS VALIDY
Inventors
Cuenod, Jean-Christophe, Sgro, Gilles
Primary Examiner(s)
COLIN, CARL G

Application Number

US10/178,914
Publication Number

US 20030028788A1
Time in Patent Office

2,296 Days
Field of Search

713/152, 713/167, 713/187, 713/189, 713/190, 713/193, 713/194, 726/26
US Class Current

713/189
CPC Class Codes

G06F 21/123 by using dedicated hardware...

G06F 21/125 by manipulating the program...

Method to protect software against unwanted use with a “elementary functions” principle

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

13 Citations

35 Claims

Specification

Solutions

Use Cases

Quick Links

Method to protect software against unwanted use with a “elementary functions” principle

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

13 Citations

35 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links