Software delivery models

US 8,856,875 B2
Filed: 07/24/2012
Issued: 10/07/2014
Est. Priority Date: 07/25/2011
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

receiving a request, at a server from an end user system, to download at least one software application from a third party software provider to the end user system;

transmitting a software agent module from the server to the end user system, the software agent module configured to control user access to the at least one software application and configured to monitor the usage of the at least one software application;

transmitting a software encryption key from the server to be stored in a trusted platform module (TPM) of the end user system;

transmitting a software license encryption key from the server to be stored in the TPM on the end user system;

transmitting an encrypted software license corresponding to the at least one software application to be installed at the end user system, the encrypted software license encrypted using the software license encryption key;

transmitting, from the server to the end user system, the software application encrypted using the software encryption key to be installed at the end user system; and

receiving, at the server, information from the software agent module related to a state and user access of the at least one software application on the end user system.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Generally, this disclosure describes software delivery systems (and methods). A server is provided that operates to provision software on a customer'"'"'s local machine. The server system, in response to a software purchase from an end user (customer), is configured to install the software on the customer'"'"'s machine, encrypt the software, and provision encryption keys to grant the customer access to the software. In addition, a software agent is installed on the customer'"'"'s machine that enables monitoring, by the server, of the customer'"'"'s installed software. The server system is configured to control customer access to the installed software, via the software agent, and to terminate customer access to the software (for example, for nonpayment of fees). Thus, the software provider can retain control over software that is remotely deployed at an end user location.

Citations

18 Claims

1. A method, comprising:
- receiving a request, at a server from an end user system, to download at least one software application from a third party software provider to the end user system;
  
  transmitting a software agent module from the server to the end user system, the software agent module configured to control user access to the at least one software application and configured to monitor the usage of the at least one software application;
  
  transmitting a software encryption key from the server to be stored in a trusted platform module (TPM) of the end user system;
  
  transmitting a software license encryption key from the server to be stored in the TPM on the end user system;
  
  transmitting an encrypted software license corresponding to the at least one software application to be installed at the end user system, the encrypted software license encrypted using the software license encryption key;
  
  transmitting, from the server to the end user system, the software application encrypted using the software encryption key to be installed at the end user system; and
  
  receiving, at the server, information from the software agent module related to a state and user access of the at least one software application on the end user system.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - in response to a user command to run the at least one software application, decrypting, via the software agent module, the at least one software application using the software encryption key stored in the TPM.
  - 3. The method of claim 1, further comprising:
    - in response to a user command to run the at least one software application, decrypting, via the software agent module, the software license using the software license encryption key stored in the TPM.
  - 4. The method of claim 1, further comprising:
    - determining, by the server, when the user of the at least one software application on the end user system is abiding by user account terms.
  - 5. The method of claim 4, further comprising:
    - disabling, by the server, user access to the at least one software application when the user account terms have been violated.
  - 6. The method of claim 1, further comprising:
    - denying the user access to the at least one software application when the software agent module is unable to communicate with the server.

7. A software distribution system, comprising:
- a server, comprising one or more hardware processors, configured to communicate with an end user system;
  
  the server further configured to;
  
  receive a request, from the end user system, to download at least one software application from a third party software provider to the end user system;
  
  transmit a software agent module from the server to the end user system, the software agent module configured to control user access to the at least one software application and configured to monitor the usage of the at least one software application;
  
  transmit a software encryption key to be stored in a trusted platform module (TPM) of the end user system;
  
  transmit a software license encryption key from the server to be stored in the TPM on the end user system;
  
  transmit an encrypted software license corresponding to the at least one software application to be installed at the end user system, the encrypted software license encrypted using the software license encryption key;
  
  transmit, to the end user system, the software application encrypted using the software encryption key to be installed at the end user system; and
  
  receiving, at the server, information from the software agent module related to a state and user access of the at least one software application on the end user system.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The software distribution system of claim 7, further comprising the end user system, wherein the software agent module of the end user system is further configured to:
    - in response to a user command to run the at least one software application, decrypt the at least one encrypted software application using the software encryption key.
  - 9. The software distribution system of claim 7, further comprising the end user system, wherein the software agent module of the end user system is configured to:
    - in response to a user command to run the at least one software application, decrypt the encrypted software license using the software license encryption key.
  - 10. The software distribution system of claim 7, wherein the server is further configured to:
    - determine when the user of the at least one software application on the end user system is abiding by user account terms.
  - 11. The software distribution system of claim 10, wherein the server is further configured to:
    - disable user access to the at least one software application when the user account terms have been violated.
  - 12. The software distribution system of claim 7, further comprising the end user system, wherein the software agent module on the server system is configured to:
    - deny the user access to the at least one software application when the software agent module is unable to communicate with the server.

13. A non-transitory computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations comprising:
- receiving a request, at a server from an end user system, to download at least one software application from a third party software provider to the end user system;
  
  transmitting a software agent module from the server to the end user system, the software agent module configured to control user access to the at least one software application and configured to monitor the usage of the at least one software application;
  
  transmitting a software encryption key from the server to be stored in a trusted platform module (TPM) of the end user system;
  
  transmitting a software license encryption key from the server to be stored in the TPM on the end user system;
  
  transmitting an encrypted software license corresponding to the at least one software application to be installed at the end user system, the encrypted software license encrypted using the software license encryption key;
  
  transmitting, from the server to the end user system, the software application encrypted using the software encryption key to be installed at the end user system; and
  
  receiving, at the server, information from the software agent module related to a state and user access of the at least one software application on the end user system.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The non-transitory computer-readable storage medium of claim 13, further comprising the operations of:
    - in response to a user command to run the at least one software application, decrypting, via the software agent module, the at least one software application using the software encryption key stored in the TPM.
  - 15. The non-transitory computer-readable storage medium of claim 13, further comprising the operations of:
    - in response to a user command to run the at least one software application, decrypting, via the software agent module, the software license using the software license encryption key stored in the TPM.
  - 16. The non-transitory computer-readable storage medium of claim 13, further comprising the operations of:
    - determining, by the server, when the user of the at least one software application on the end user system is abiding by user account terms.
  - 17. The non-transitory computer-readable storage medium of claim 16, further comprising the operations of:
    - disabling, by the server, user access to the at least one software application when the user account terms have been violated.
  - 18. The non-transitory computer-readable storage medium of claim 13, further comprising the operations of:
    - denying the user access to the at least one software application when the software agent module is unable to communicate with the server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Aditya, Vikas
Primary Examiner(s)
Dada, Beemnet
Assistant Examiner(s)
BEHESHTI SHIRAZI, SAYED ARESH

Application Number

US13/556,981
Publication Number

US 20130031607A1
Time in Patent Office

805 Days
Field of Search

726/3, 726/26, 713/150, 713/164, 713/189, 713/193, 713/175, 380/277, 380/278, 709/202, 709/224
US Class Current

726/3
CPC Class Codes

G06F 21/121 Restricting unauthorised ex...

Software delivery models

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Software delivery models

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links