Non-invasive metering system for software licenses

US 8,725,645 B1
Filed: 02/13/2013
Issued: 05/13/2014
Est. Priority Date: 01/04/2013
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for metering use of software, the method comprising:

establishing an application usage account for a user, the application usage account having an account balance;

receiving, from a third-party software publisher, an unmodified executable for a third-party application of the third-party software publisher;

receiving configuration information specifying runtime properties of the third-party application, the specified runtime properties comprising a runtime behavior of the third-party application in response to an absence of a network connection of the third-party application with a remote metering server;

producing an encrypted executable by encrypting the unmodified executable;

generating a secure application package for distributing the third-party application, the secure application package comprising;

the encrypted executable,the received configuration information, anda loader separate from the encrypted executable that when executed on a computing device;

allocates, within memory of the computing device, a template process with an empty code segment;

decrypts the encrypted executable into the empty code segment within the memory of the computing device, without storing the decrypted executable to durable storage of the computing device; and

launches a shell application for controlling metering of the third-party application at runtime;

providing to a remote computing device of the user, the secure application package and the shell application;

receiving from the shell application executing on the remote computing device an authentication request including credentials of the application usage account of the user;

verifying the received credentials;

responsive to verifying the received credentials, providing an indication to the shell application that it may enable use of the third-party application on the remote computing device by decrypting the encrypted executable;

receiving, at periodic intervals from the shell application executing on the remote computing device and controlling execution of the third-party application on the remote computing device using the configuration information of the secure application package, an indication of usage time of the third-party application by the user; and

responsive to receiving the indications of usage time from the shell application, tracking time of use of the third-party application and deducting a corresponding amount from the account balance of the user based on the time of use.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A non-invasive metering system enables on-demand, metered usage licensing of software applications. A packaging module generates a secure application package for an original, unmodified application authored by a software publisher. The software publisher need not directly modify the code of the original application. Rather, the packaging module includes, within the secure application package but separate from the code of the application itself, a shell application that controls runtime aspects of the application, such as metering of the application. The secure application package is made available to users wishing to use the application on a metered basis. When users use the secure application package, a specialized loader process extracts from the secure application package executable code for the application and for the shell application, and executes the shell application, which in turn authenticates the user and executes the application the using the executable code extracted from the secure application package.

Citations

20 Claims

1. A computer-implemented method for metering use of software, the method comprising:
- establishing an application usage account for a user, the application usage account having an account balance;
  
  receiving, from a third-party software publisher, an unmodified executable for a third-party application of the third-party software publisher;
  
  receiving configuration information specifying runtime properties of the third-party application, the specified runtime properties comprising a runtime behavior of the third-party application in response to an absence of a network connection of the third-party application with a remote metering server;
  
  producing an encrypted executable by encrypting the unmodified executable;
  
  generating a secure application package for distributing the third-party application, the secure application package comprising;
  
  the encrypted executable,the received configuration information, anda loader separate from the encrypted executable that when executed on a computing device;
  
  allocates, within memory of the computing device, a template process with an empty code segment;
  
  decrypts the encrypted executable into the empty code segment within the memory of the computing device, without storing the decrypted executable to durable storage of the computing device; and
  
  launches a shell application for controlling metering of the third-party application at runtime;
  
  providing to a remote computing device of the user, the secure application package and the shell application;
  
  receiving from the shell application executing on the remote computing device an authentication request including credentials of the application usage account of the user;
  
  verifying the received credentials;
  
  responsive to verifying the received credentials, providing an indication to the shell application that it may enable use of the third-party application on the remote computing device by decrypting the encrypted executable;
  
  receiving, at periodic intervals from the shell application executing on the remote computing device and controlling execution of the third-party application on the remote computing device using the configuration information of the secure application package, an indication of usage time of the third-party application by the user; and
  
  responsive to receiving the indications of usage time from the shell application, tracking time of use of the third-party application and deducting a corresponding amount from the account balance of the user based on the time of use.
- View Dependent Claims (2, 3, 4, 5, 9, 10, 11, 12, 13, 14, 15)
- - 2. The computer-implemented method of claim 1, wherein the loader decrypts the encrypted executable into the memory of the computing device responsive to verification of the account credentials.
  - 3. The computer-implemented method of claim 1, wherein the shell application provides a user interface to enable pausing of usage of the third-party application on the computing device.
  - 4. The computer-implemented of claim 1, further comprising periodically recharging the account balance when the account balance declines to a given minimum amount.
  - 5. The computer-implemented method of claim 1, wherein the shell application notifies the third-party application to resume a thread spawned by an operating system of the remote computing device.
  - 9. The computer-implemented method of claim 3, wherein the shell application provides a user interface comprising a pausable meter that tracks the user'"'"'s usage of the third-party application based on communications from the remote computing device, the pausable meter configured to pause when a threshold period of inactivity has been reached.
  - 10. The computer-implemented method of claim 9, wherein the threshold period of inactivity is a user-configurable time period.
  - 11. The computer-implemented method of claim 1, wherein the third-party application is created by the third-party software publisher, and wherein the third-party software publisher is different from an entity performing the computer-implemented method.
  - 12. The computer-implemented method of claim 1, further comprising communicating with the shell application once per minute to verify usage of the third-party application by the user.
  - 13. The computer-implemented method of claim 1, wherein the user'"'"'s application usage account is associated with a plurality of users.
  - 14. The computer-implemented method of claim 1, wherein the deducted amount comprises a different monetary amount per time unit based on a type of operation executed by the third-party application.
  - 15. The computer-implemented method of claim 1, wherein the shell application provides secure communication capabilities to the third-party application.

6. A computer program product comprising instructions stored on a non-transitory computer-readable medium, the instructions configured to cause a processor to perform a method comprising:
- establishing an application usage account for a user, the application usage account having an account balance;
  
  receiving, from a third-party software publisher, an unmodified executable for a third-party application of the third-party software publisher;
  
  receiving configuration information specifying runtime properties of the third-party application, the specified runtime properties comprising a runtime behavior of the third-party application in response to an absence of a network connection of the third-party application with a remote metering server;
  
  producing an encrypted executable by encrypting the unmodified executable;
  
  generating a secure application package for distributing the third-party application, the secure application package comprising;
  
  the encrypted executable,the received configuration information, anda loader separate from the encrypted executable that when executed on a computing device;
  
  allocates, within memory of the computing device, a template process with an empty code segment;
  
  decrypts the encrypted executable into the empty code segment within the memory of the computing device, without storing the decrypted executable to durable storage of the computing device; and
  
  launches a shell application for controlling metering of the third-party application at runtime;
  
  providing to a remote computing device of the user, the secure application package and the shell application;
  
  receiving from the shell application on the remote computing device an authentication request including credentials of the application usage account of the user;
  
  verifying the received credentials;
  
  responsive to verifying the received credentials, provide an indication to the shell application to enable use of the third-party software application on the remote computing device by decrypting the encrypted executable;
  
  receiving, at periodic intervals from the shell application executing on the remote computing device and controlling execution of the third-party application on the remote computing device using the configuration information of the secure application package, an indication of usage time of the third-party application by the user; and
  
  responsive to receiving the indications of usage time from the shell application, tracking time of use of the third-party application and deducting a corresponding amount from the account balance of the user based on the time of use.
- View Dependent Claims (7, 8, 16, 17, 18, 19, 20)
- - 7. The computer program product of claim 6, wherein the loader decrypts the encrypted executable into the memory of the computing device responsive to verification of the account credentials.
  - 8. The computer program product of claim 6, wherein the shell application provides a user interface to enable pausing of usage of the third-party application on the computing device.
  - 16. The computer program product of claim 6, wherein the deducted amount comprises a different monetary amount per time unit based on a type of operation executed by the third-party application.
  - 17. The computer program product of claim 8, wherein the shell application provides a user interface comprising a pausable meter that tracks the user'"'"'s usage of the third-party application based on communications from the remote computing device, the pausable meter configured to pause when a threshold period of inactivity has been reached.
  - 18. The computer program product of claim 8, the performed method further comprising periodically recharging the account balance when the account balance declines to a given minimum amount.
  - 19. The computer program product of claim 8, wherein the shell application notifies the third-party application to resume a thread spawned by an operating system of the remote computing device.
  - 20. The computer program product of claim 17, wherein the threshold period of inactivity is a user-configurable time period.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cetrus LLC
Original Assignee
Cetrus LLC
Inventors
Montini, Cory A., Eliahu, Uri, Lieberman, David E., Gabel, Christopher
Primary Examiner(s)
Obeid, Mamon

Application Number

US13/766,718
Time in Patent Office

454 Days
Field of Search

717/104, 717/120, 717/174, 717/178, 705 50- 52, 705/59
US Class Current

705/52
CPC Class Codes

G06F 21/121   Restricting unauthorised ex...

G06F 21/125   by manipulating the program...

G06F 2221/2101   Auditing as a secondary aspect

Non-invasive metering system for software licenses

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Non-invasive metering system for software licenses

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links