Secure versioning of software packages
First Claim
1. A computer-implemented method for restricting installation and execution of a superseded software program on a computing device, comprising:
- storing, in a lockable, physical non-volatile memory of the computing device, a locked version number associated with a software program, wherein write access to the lockable non-volatile memory is restricted for at least some software programs executing on the computing device;
receiving a request to update the software program with an update package associated with a package number;
comparing, by a processor, the package number with the locked version number;
determining, by the processor, whether to update the software program based at least in part on the comparison;
updating the software program with the update package when the package number is at least as recent as the locked version number; and
restricting the updating of the software program with the update package when the package number is earlier than the locked version number.
2 Assignments
0 Petitions
Accused Products
Abstract
To provide a secure installation and execution software environment, locked version numbers are maintained. A locked version number associated with a software program may be stored. When a request is received to update the software program with an update package, a package number of the update package may be compared to the locked version number. The software program may be updated with the update package if the package number is at least as recent as the locked version number, and the updating of the software program with the update package may be restricted if the package number is earlier than the locked version number.
-
Citations
20 Claims
-
1. A computer-implemented method for restricting installation and execution of a superseded software program on a computing device, comprising:
-
storing, in a lockable, physical non-volatile memory of the computing device, a locked version number associated with a software program, wherein write access to the lockable non-volatile memory is restricted for at least some software programs executing on the computing device; receiving a request to update the software program with an update package associated with a package number; comparing, by a processor, the package number with the locked version number; determining, by the processor, whether to update the software program based at least in part on the comparison; updating the software program with the update package when the package number is at least as recent as the locked version number; and restricting the updating of the software program with the update package when the package number is earlier than the locked version number. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for restricting installation and execution of a superseded software program, comprising:
-
a physical, non-volatile locked version number storage that stores a locked version number associated with a software program, wherein write access to the locked version number storage is restricted for at least some software programs executed by the system; and a processor executing; a version comparator that compares a package number of an update package for the software program with the locked version number; and a software program updater that updates the software program with the update package when the package number is at least as recent as the locked version number. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer program product comprising a non-transitory computer readable storage medium having control logic stored therein for causing a computer to restrict installation of a superseded software program on a computing device, the control logic comprising:
-
a first computer readable program code that stores a locked version number associated with a software program in a physical, non-volatile locked version number storage, wherein write access to the version number storage is restricted for at least some software programs executing on the computing device; a second computer readable program code that receives a request to update the software program with an update package associated with a package number; a third computer readable program code that compares the package number with the locked version number; a fourth computer readable program code that determines whether to update the software program based at least in part on the comparison; a fifth computer readable program code that updates the software program with the update package when the package number is at least as recent as the locked version number; and a sixth computer readable program code that restricts the updating of the software program with the update package when the package number is earlier than the locked version number.
-
Specification