Profile protection

US 7,891,008 B2
Filed: 02/17/2005
Issued: 02/15/2011
Est. Priority Date: 06/12/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method for protecting interoperation between pieces of software running on a computing device having a plurality of blobs of data stored in a central hierarchical database, each blob comprising profile data associated with a software component, a signature and a verifier, the computer-implemented method comprising:

by a log-on module running on the computing device, initiating access to profile data stored in a blob of the plurality of blobs in the central hierarchical database of the computing device, the log-on module having a public calling key and a private calling key, the log-on module sending a random salt value to second piece of software running on the computing device and having a private library key of a public library key/private library key pair, the profile data being encrypted with the private calling key, the signature of the blob being a checksum of at least the profile data signed with the public library key and the verifier of the blob being a checksum of at least the profile data signed with the public calling key;

with the second piece of software;

finding the blob in the central hierarchical database of the computing device, the finding comprising decrypting the blob using the private library key,computing a first computed checksum based at least in part on the profile data and the random salt value, andsending the first computed checksum and at least a portion of the blob to the log-on module; and

with the log-on module;

computing a second computed checksum based at least in part on the random salt value and information provided by the second software component,comparing the first computed checksum with the second computed checksum andtaking security error measures when the first and second computed checksums do not match,wherein;

the second piece of software is an obfuscated piece of software, andthe private library key is private to the second piece of software and is inaccessible to the log-on module.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Tampering with pieces of software is inhibited. Profiles are stored in a central hierarchical database and such profiles are protected from tampering. The obfuscation of a software image so as to becloud the comprehension of hackers in reverse engineering pieces of software comprising the software image is provided. A process of verifying whether the pieces of software together constitute a software package that requires protection from tampering is also provided.

46 Citations

View as Search Results

18 Claims

1. A computer-implemented method for protecting interoperation between pieces of software running on a computing device having a plurality of blobs of data stored in a central hierarchical database, each blob comprising profile data associated with a software component, a signature and a verifier, the computer-implemented method comprising:
- by a log-on module running on the computing device, initiating access to profile data stored in a blob of the plurality of blobs in the central hierarchical database of the computing device, the log-on module having a public calling key and a private calling key, the log-on module sending a random salt value to second piece of software running on the computing device and having a private library key of a public library key/private library key pair, the profile data being encrypted with the private calling key, the signature of the blob being a checksum of at least the profile data signed with the public library key and the verifier of the blob being a checksum of at least the profile data signed with the public calling key;
  
  with the second piece of software;
  
  finding the blob in the central hierarchical database of the computing device, the finding comprising decrypting the blob using the private library key,computing a first computed checksum based at least in part on the profile data and the random salt value, andsending the first computed checksum and at least a portion of the blob to the log-on module; and
  
  with the log-on module;
  
  computing a second computed checksum based at least in part on the random salt value and information provided by the second software component,comparing the first computed checksum with the second computed checksum andtaking security error measures when the first and second computed checksums do not match,wherein;
  
  the second piece of software is an obfuscated piece of software, andthe private library key is private to the second piece of software and is inaccessible to the log-on module.
- View Dependent Claims (2, 3, 4, 13, 14, 15, 16, 17, 18)
- - 2. The computer-implemented method of claim 1, wherein the first computed checksum is a checksum of a collection of information that includes an identifier of the profile, profile data, a result of finding the profile, and the random salt value.
  - 3. The computer-implemented method of claim 2, wherein the second piece of software further sends to the log-on module the result of finding the profile and a verifier blob of the profile signed by the public calling key and encrypted with the private calling key, wherein the verifier blob of the profile comprises a verifier checksum of the identifier of the profile.
  - 4. The computer-implemented method of claim 3, further comprising after receiving the result of finding the profile, the verifier blob, and the first checksum, the log-on module decrypting the verifier to obtain a verifier checksum using the private calling key and verifying the signature of the verifier checksum by using the public calling key, the log-on module computing the second checksum from a collection of information that includes the verifier checksum of the identifier of the profile, the result of finding the profile, and the random salt value.
  - 13. The computer-implemented method of claim 1, wherein:
    - the second piece of software comprises an obfuscated protection dynamically-linked library, andthe profile comprises profile data and a signature containing a checksum of the profile data, the signature being digitally signed with the public library key of the public/private library key pair.
  - 14. The computer-implemented method of claim 2, wherein the central hierarchical database is a registry of the computing device.
  - 15. The computer-implemented method of claim 2, wherein the profile data indicates a plurality of pieces of computing machinery that an operating system of the computing device supports.
  - 16. The computer-implemented method of claim 2, wherein the profile data describes a language in which an operating system of the computing device supports presenting information.
  - 17. The computer-implemented method of claim 1, wherein taking security error measures comprises shutting down the computing device.
  - 18. The computer-implemented method of claim 1, wherein storing the plurality of profiles with differing arrangements of their respective contents comprises:
    - storing the profiles with differing arrangements of profile data, verifier blobs, and signatures within the profiles; and
      
      storing headers indicating an organization of the respective contents of each of the plurality of profiles.

5. A computer-readable medium having executable instructions stored thereon for implementing a computer-implemented method for protection interoperation between pieces of software, the computer-implemented method comprising:
- initiating access to a profile stored in a central hierarchical database by a first piece of software, the initiating comprising the first piece of software sending a random salt value to a second piece of software;
  
  after receiving the random salt value by the second piece of software, the second piece of software having a private library key of a public library key/private library key pair, and the second piece of software;
  
  finding the profile in the central hierarchical database, the finding comprising decrypting the profile using the private library key,verifying, based on the profile, that software executing on the computing device has not been tampered with,computing a first checksum based at least in part on the profile, the random salt value and a result of operation of the second piece of software, andsending the first checksum and at least a portion of the profile to the first piece of software;
  
  after receiving the first checksum and the at least a portion of the profile by the first piece of software, computing a second checksum;
  
  comparing the first checksum with the second checksum; and
  
  concluding that tampering has occurred and taking security error measures when the first checksum does not match the second checksum.
- View Dependent Claims (6, 7, 8)
- - 6. The computer-readable medium of claim 5, wherein the second piece of software computes the first checksum from a first collection of information that includes an identifier of the profile, profile data, a result of finding the profile, and the random salt value.
  - 7. The computer-readable medium of claim 6, wherein the second piece of software sends to the first piece of software the result of finding the profile, a verifier blob of the profile signed by the public calling key and encrypted with the private calling key, and the first checksum computed by the second piece of software, wherein the verifier blob of the profile comprises a verifier checksum of the identifier of the profile.
  - 8. The computer-readable medium of claim 7, wherein after receiving the result of the profile, the verifier blob, and the first checksum, the first piece of software decrypts the verifier blob to obtain the verifier checksum using the private calling key, verifies the signature by using the public calling key, and computes the second checksum from a second collection of information that includes the verifier checksum of the identifier of the profile, the result of finding the profile, and the random salt value.

9. A system for protecting interoperation between pieces of software running on a computing device, the system comprising:
- a central hierarchical database for storing a plurality of profiles, the plurality of profiles each comprising a plurality of components and placement information indicating location of each of the components within the profile such that the profiles have differing arrangements of their respective contents to inhibit tampering;
  
  means for initiating access to a profile of hardware and/or language information stored in the central hierarchical database by a log-on module running on the computing device having a public calling key and a private calling key, the log-on module receiving and validating a user name and password and sending information including a random salt value;
  
  after receiving the information by a second piece of software running on the computing device and having a private library key of a public library key/private library key pair, the second piece of software executing a means for;
  
  finding the profile in the central hierarchical database, decrypting the profile using the private library key,determining whether software associated with the profile has been tampered with,computing a first checksum of a collection of information that includes at least a first portion of the profile, a result of operation of the second piece of software and the random salt value, andsending the first checksum and at least a second portion of the profile to the log-on module, wherein the means for finding the profile accesses the placement information to determine the location within the profile of the collection of information.
- View Dependent Claims (10, 11, 12)
- - 10. The system of claim 9, wherein the collection of information includes an identifier of the profile, profile data, a result of finding the profile, and the random salt value, the identifier of the profile and the profile data being the at least a first portion of the profile.
  - 11. The system of claim 10, wherein the second piece of software uses a means for sending the result of finding the profile, a verifier blob of the profile signed by the public calling key and encrypted with the private calling key, and the first checksum computed by the second piece of software, the verifier blob being the at least a second portion of the profile.
  - 12. The system of claim 11, further comprising after receiving the result of the profile, the verifier blob, and the first checksum, the log-on module decrypts the verifier blob using the private calling key and executing means for verifying the signature by using the public calling key, the log-on module computing a second checksum of a collection of information that includes an identifier of the profile, the profile data, the result of finding the profile, and the random salt value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Bennett, Julie D, Wu, Wei, Fortune, Erik, El-Gammal, Mohammed
Primary Examiner(s)
Vu; Kimyen
Assistant Examiner(s)
SCHWARTZ, DARREN B

Application Number

US11/061,280
Publication Number

US 20050278535A1
Time in Patent Office

2,189 Days
Field of Search

713 1- 2, 713164-167, 713/189, 713/193, 726 1- 2, 726/16, 726/21, 726 22- 30, 380/262
US Class Current

726/27
CPC Class Codes

G06F 21/121   Restricting unauthorised ex...

G06F 21/14   against software analysis o...

G06F 21/50   Monitoring users, programs ...

G06F 21/55   Detecting local intrusion o...

G06F 21/57   Certifying or maintaining t...

G06F 21/64   Protecting data integrity, ...

G06F 8/60   Software deployment

G06F 8/61   Installation

H04L 2209/16   Obfuscation or hiding, e.g....

H04L 9/0836   using tree structure or hie...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

Profile protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

46 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Profile protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links