Software application protection by way of a digital rights management (DRM) system

US 7,680,743 B2
Filed: 05/15/2002
Issued: 03/16/2010
Est. Priority Date: 05/15/2002
Status: Expired due to Fees

First Claim

Patent Images

1. A method for protecting a software application in connection with a digital rights management (DRM) system, where the DRM system and the application both reside on a computing device, the application has a unique ID as resident on the computing device, and the DRM system has a unique ID as resident on the computing device, the application for being executed to perform a function, the method comprising:

receiving, responsive to a license request, a first digital license for the application and corresponding to verification of the application, where the first digital license comprises a term;

receiving, responsive to the license request, a second digital license for the application and corresponding to verification of the combination of the application and the DRM system, the second license including the unique ID of the DRM system and the unique ID of the application;

triggering a first code in the application that requires the DRM system to verify the application on the basis of the first license;

verifying at the DRM system based on the triggered first code that the application is allowed to be executed to perform the function based on the first license;

verifying at the DRM system based on the triggered first code that the term in the first license permits the application to be executed;

triggering a second code in the application that requires the application to verify the combination of the DRM and the application on the basis of the second license;

verifying at the application based on the triggered second code that the application is allowed to be executed in connection with the DRM system based on the second license having therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device; and

executing the application only after the DRM system verifies that the first license in fact allows the application to execute to perform the function, the application verifies that the second license has therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device, and the DRM system verifies that the term in the first license permits the application to be executed;

wherein the first digital license validates the use of the application and the second digital license validates the combination of the DRM and the application.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital rights management (DRM) system, an application, and a DRM digital license for the application are all on a computing device. The application is for being executed to perform a function and includes code requiring that the DRM system determine that the application is allowed to be executed to perform the function based on the license. The application further includes code for determining that the application is to be executed on one of the computing device or in connection with the DRM system.

58 Citations

View as Search Results

19 Claims

1. A method for protecting a software application in connection with a digital rights management (DRM) system, where the DRM system and the application both reside on a computing device, the application has a unique ID as resident on the computing device, and the DRM system has a unique ID as resident on the computing device, the application for being executed to perform a function, the method comprising:
- receiving, responsive to a license request, a first digital license for the application and corresponding to verification of the application, where the first digital license comprises a term;
  
  receiving, responsive to the license request, a second digital license for the application and corresponding to verification of the combination of the application and the DRM system, the second license including the unique ID of the DRM system and the unique ID of the application;
  
  triggering a first code in the application that requires the DRM system to verify the application on the basis of the first license;
  
  verifying at the DRM system based on the triggered first code that the application is allowed to be executed to perform the function based on the first license;
  
  verifying at the DRM system based on the triggered first code that the term in the first license permits the application to be executed;
  
  triggering a second code in the application that requires the application to verify the combination of the DRM and the application on the basis of the second license;
  
  verifying at the application based on the triggered second code that the application is allowed to be executed in connection with the DRM system based on the second license having therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device; and
  
  executing the application only after the DRM system verifies that the first license in fact allows the application to execute to perform the function, the application verifies that the second license has therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device, and the DRM system verifies that the term in the first license permits the application to be executed;
  
  wherein the first digital license validates the use of the application and the second digital license validates the combination of the DRM and the application.
- View Dependent Claims (2, 3, 4, 5, 6, 11, 12, 15, 16)
- - 2. The method of claim 1 wherein triggering the first code comprises triggering the first code at a time selected from a group consisting of during loading of the application, at a pre-determined point during execution of the application, and periodically.
  - 3. The method of claim 1 wherein the first digital license is a digital certificate.
  - 4. The method of claim 1 wherein the second digital license is a digital signature.
  - 5. The method of claim 1 wherein the license request comprises a first application identifier associated with the application,wherein the first digital license comprises a second application identifier associated with the application, andwhere the first code validates the first digital license by comparing the first application identifier with the second application identifier.
  - 6. The method of claim 1 comprising triggering the second code at a time selected from a group consisting of during loading of the application, at a pre-determined point during execution of the application, and periodically.
  - 11. The method of claim 1 comprising performing a hash on the DRM system, comparing the hash with a trusted hash of the DRM system, and judging by the comparison whether the DRM system is to be trusted.
  - 12. The method of claim 11 comprising comparing the hash with a trusted hash of the DRM system included with the application.
  - 15. The method of claim 1 wherein the license request comprises a first application identifier associated with the application and a first DRM identifier associated with the DRM system, wherein the second digital license comprises a second application identifier and a second DRM identifier, and where the second code validates the second digital license by comparing the first application identifier with the second application identifier and the first DRM identifier with the second DRM identifier.
  - 16. The method of claim 1 where the first and second code are the output of an integrity protector.

7. A computer-readable medium, for protecting a software application in connection with a digital rights management (DRM) system, having stored thereon computer-executable instructions for performing a method in combination with a DRM system and the application on a computing device, the application has a unique ID as resident on the computing device, and the DRM system has a unique ID as resident on the computing device, the application for being executed to perform a function , the method comprising:
- sending, by the DRM system, a license request to a license server;
  
  receiving from the license server, responsive to the license request, a first digital license for the application and corresponding to verification of the application, where the first digital license comprises a term;
  
  receiving from the license server, responsive to the license request, a second digital license for the application and corresponding to verification of the combination of the application and the DRM system, the second license including the unique ID of the DRM system and the unique ID of the application;
  
  triggering a first code in the application that requires the DRM system to verify the application on the basis of the first license;
  
  verifying at the DRM system based on the triggered first code that the application is allowed to be executed to perform the function based on the first license;
  
  verifying at the DRM system based on the triggered first code that the term in the first license permits the application to be executed;
  
  triggering a second code in the application that requires the application to verify the combination of the DRM and the application on the basis of the second license;
  
  verifying at the application based on the triggered second code that the application is allowed to be executed in connection with the DRM system based on the second license having therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device; and
  
  wherein the first digital license validates the use of the application and the second digital license validates the combination of the DRM and the application and the application is executed only after the DRM system verifies that the first license in fact allows the application to execute to perform the function, the application verifies that the second license has therein the unique ID of the application as resident on the computing device and the unique ID of the DRM system as resident on the computing device, and the DRM system verifies that the term in the first license permits the application to be executed.
- View Dependent Claims (8, 9, 10, 13, 14, 17, 18, 19)
- - 8. The medium of claim 7 wherein the first digital license comprises a digital certificate.
  - 9. The medium of claim 7 wherein the second digital license comprises a digital signature.
  - 10. The medium of claim 7 wherein the license request comprises a first application identifier associated with the application, wherein the first digital license comprises a second application identifier associated with the application, and where the first code validates the first license by comparing the first application identifier with the second application identifier.
  - 13. The medium of claim 7 wherein the method comprises performing a hash on the DRM system, comparing the hash with a trusted hash of the DRM system, and judging by the comparison whether the DRM system is to be trusted.
  - 14. The medium of claim 13 wherein the method comprises comparing the hash with a trusted hash of the DRM system included with the application.
  - 17. The medium of claim 7 comprising triggering the second code at a time selected from a group consisting of during loading of the application, at a pre-determined point during execution of the application, and periodically.
  - 18. The medium of claim 7 wherein the license request comprises a first application identifier associated with the application and a first DRM identifier associated with the DRM system, wherein the second digital license comprises a second application identifier and a second DRM identifier, and where the second code validates the second digital license by comparing the first application identifier with the second application identifier and the first DRM identifier with the second DRM identifier.
  - 19. The medium of claim 7 where the first and second code are the output of an integrity protector.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Peinado, Marcus, England, Paul, Manferdelli, John L.
Primary Examiner(s)
Augustin, Evens J

Application Number

US10/146,236
Publication Number

US 20030217011A1
Time in Patent Office

2,862 Days
Field of Search

705/59, 705/51, 705/57, 705/1
US Class Current

705/59
CPC Class Codes

G06F 21/10 Protecting distributed prog...

Software application protection by way of a digital rights management (DRM) system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

58 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Software application protection by way of a digital rights management (DRM) system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

58 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links