Method and system for the secured distribution of multimedia titles

US RE38,375 E1
Filed: 04/27/2000
Issued: 12/30/2003
Est. Priority Date: 12/13/1994
Status: Expired due to Term

First Claim

Patent Images

1. A method in a data processing system for detecting unauthorized programs within the data processing system, the method comprising:

creating a validation structure for validating a program including program data, wherein the structure includes data derived from data selected from a portion portions of the program data including sections other than a lead-in section of the program data, which is used to determine whether the program is an unauthorized program;

imbedding the validation structure in the program; and

responsive to an initiation of the program, determining whether the program is an authorized program using the validation structure.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for detecting authorized programs within a data processing system. The present invention creates a validation structure for validating a program. The validation structure is embedded in the program and in response to an initiation of the program, a determination is made as to whether the program is an authorized program. The determination is made using the validation structure.

24 Citations

View as Search Results

38 Claims

1. A method in a data processing system for detecting unauthorized programs within the data processing system, the method comprising:
- creating a validation structure for validating a program including program data, wherein the structure includes data derived from data selected from a portion portions of the program data including sections other than a lead-in section of the program data, which is used to determine whether the program is an unauthorized program;
  
  imbedding the validation structure in the program; and
  
  responsive to an initiation of the program, determining whether the program is an authorized program using the validation structure.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising preventing execution of the program in response to a determination that the program is unauthorized.
  - 3. The method of claim 1, further comprising permitting limited execution of the program in response to a determination that the program is unauthorized.
  - 4. The method of claim 1, where in the determining step comprises
5. The method of claim 1, wherein the creating step comprises randomly selecting data from within the program.
6. The method of claim 5, wherein the creating step comprises:
- randomly selecting a plurality of sections from within the program;
  
  creating a cryptographic hash value for each selected section from the plurality of randomly selected sections within the program; and
  
  storing the cryptographic hash value and a location value for each selected section as a data record within a validation structure, wherein the location is a location of the selected section within the program.
7. The method of claim 6, wherein the creating step further comprises:
- creating a signature for the validation structure, wherein the signature is a cryptographic hash value calculated on the validation structure; and
  
  associating the signature with the validation structure.
8. The method of claim 7, wherein the associating step comprises placing the signature within the validation structure.
9. The method of claim 1, wherein the determining step comprises:
- randomly selecting a number of data records from within the validation structure;
  
  for each randomly data selected record, creating a cryptographic hash value on the section in located indicated by the location value for the randomly selected data record; and
  
  comparing the created cryptographic hash value with the hash value within the randomly selected data record.
10. The method of claim 9, wherein the determining step further comprises:
- creating a cryptographic hash value for the validation structure; and
  
  comparing the created cryptographic hash value with the signature.

11. A data processing system for detecting unauthorized programs within the data processing system, the data processing system comprising:
- creation means for creating a validation structure for validating a program including program data, wherein the structure includes data derived from data selected from a portion portions of the program data including sections other than a lead-in section of the program data, wherein the structure may be used to determine whether the program is an unauthorized program;
  
  imbedding means for imbedding the validation structure in the program; and
  
  determination means, responsive to an initiation of the program, for determining whether the program is an unauthorized program.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The data processing system of claim 11, further comprising means for preventing execution of the program in response to a determination that the program is unauthorized.
  - 13. The data processing system of claim 11, further comprising means for permitting limited execution of the program in response to a determination that the program is unauthorized.
  - 14. The data processing system of claim 11, wherein the determination means comprises
15. The data processing system of claim 11, wherein the creation means comprises:
- second random selection means for randomly selecting a plurality of sections from within the program;
  
  second creation means for creating a cryptographic hash value for each selected section from the plurality of randomly selected sections within the program; and
  
  storage means for storing the cryptographic hash value and a location value for each selected section as a data record within a validation structure, wherein the location is a location of the selected section within the program.
16. The data processing system of claim 14, wherein the creation means further comprises:
- third creation means for creating a signature for the validation structure, system is calculated on the cryptographic hash value; and
  
  association means for associating the signature with the validation structure.
17. The data processing system of claim 16, wherein the association means comprises placement means for placing the signature within the validation structure.
18. The data processing system of claim 16, wherein the determination means comprises:
- random selection means for randomly selecting a number of data records from within the validation structure;
  
  creations means for creating a cryptographic hash value on the section in located indicated by the location value for the randomly selected data record for each randomly data selected record; and
  
  comparison means for comparing the created cryptographic hash value with the hash value within the randomly selected data record.
19. The data processing system of claim 18, wherein the determination means further comprises:
- creation means for creating a cryptographic hash value for the validation structure; and
  
  validation means for the created cryptographic hash value with the signature.

20. A method in a data processing system for creating a validation structure for use in validating a program, the method comprising:
- selecting a plurality of sections including sections other than a lead-in section from within the program, each section within the plurality of sections containing program data;
  
  creating a cryptographic hash value for each selected section from the program data within the plurality of selected sections within the program; and
  
  storing the cryptographic hash value and a location for each selected section as a data record within a validation structure, wherein the location is a location of the selected section within the program.
- View Dependent Claims (21, 22, 23)
- - 21. The method of claim 20, wherein the selecting step comprises randomly selecting a plurality of sections from within the program.
  - 22. The method of claim 20, wherein the creating step further comprises:
23. The method of claim 22, wherein the associating step comprises placing the signature within the validation structure.

24. A data processing system for creating a validation structure for use in validating a program, the data processing system comprising:
- random selection means for randomly selecting a plurality of sections including sections other than a lead-in section from within the program, each selected section within the plurality of randomly selected sections containing program data;
  
  creation means for creating a cryptographic hash value for program data within each selected section from within the plurality of randomly selected sections within the program; and
  
  storage means for storing the cryptographic hash value and a location value for each selected section as a data record within a validation structure, wherein the location is a location of the selected section within the program.
- View Dependent Claims (25, 26)
- - 25. The data processing system of claim 24, wherein the creation means further comprises:
26. The data processing system of claim 25, wherein the association means comprises placement means for placing the signature within the validation structure.

27. A method in a data processing system for validating a program, wherein the program includes a validation structure having a plurality of data records, wherein each data record within the plurality of data records includes a cryptographic hash value for program data within a section selected from sections including sections other than a lead-in section of the program and a location value, wherein the location value indicates a location of the selected section, the method comprising:
- randomly selecting a number of data records from within the validation structure;
  
  creating a cryptographic hash value on program data within the section in the location indicated by the location value for the randomly selected data record for each randomly selected data record; and
  
  comparing the created cryptographic hash value with the hash value within the randomly selected data record.
- View Dependent Claims (28)
- - 28. The data processing system of claim 27, wherein the determination means further comprises:

29. A data processing system for validating a program, wherein the program includes a validation structure having a plurality of data records, wherein each data record within the plurality of data records includes a cryptographic hash value for program data within a section selected from sections including sections other than a lead-in section of the program and a location value, wherein the location value indicates a location of the selected section, the data processing system comprising:
- random selection means for randomly selecting a number of data records from within the validation structure;
  
  creation means for creating a cryptographic hash value on program data within the section in the location indicated by the location value for the randomly selected data record for each randomly selected data record; and
  
  comparison means for comparing the created cryptographic hash value with the hash value within the randomly selected data record.
- View Dependent Claims (30)
- - 30. The data processing system of claim 29, wherein the determination means further comprises:

31. A storage device readable by a data processing system and encoding data processing system executable instructions comprising:
- selections means for selecting a plurality of sections including sections other than a lead-in section from within a program containing program data;
  
  creation means for creating a cryptographic hash value for program data within each selected section from the plurality of selected sections within the program; and
  
  storage means for storing the cryptographic hash value and a location value for each selected section as a data record within a validation structure, wherein the location is a location of the selected section within the program, wherein the means are activated when the storage device is connected to and accessed by a data processing system.
- View Dependent Claims (32, 33, 34)
- - 32. The storage device of claim 31, wherein the storage device is a hard disk drive.
  - 33. The storage device of claim 31, wherein the storage device is a ROM for use with a data processing system.
  - 34. The storage device of claim 31, wherein the storage device is a floppy diskette.

35. A storage device readable by a data processing system and encoding data processing system executable instructions for validating a program, wherein the program includes a validation structure having a plurality of data records, wherein each data record within the plurality of data records includes a cryptographic hash value for program data within a section selected from sections including sections other than a lead-in section of the program and a location value, wherein the location value indicates a location of the section, the storage device comprising:
- creation means for creating a cryptographic hash value on program data within the section in the location indicated by the location value for the randomly selected data record for each randomly selected data record; and
  
  comparison means for comparing the created cryptographic hash value with the hash value within the randomly selected data record, wherein the means are activated when the storage device is connected to and accessed by a data processing system.
- View Dependent Claims (36, 37, 38)
- - 36. The storage device of claim 35, wherein the storage device is a hard disk drive.
  - 37. The storage device of claim 35, wherein the storage device is a ROM for use with a data processing system.
  - 38. The storage device of claim 35, wherein the storage device is a floppy diskette.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Activision Publishing Incorporated (Microsoft Corporation)
Original Assignee
International Business Machines Corporation
Inventors
Yung, Marcel Mordechay, Krawczyk, Hugo Mario, Kutten, Shay, Matyas, Stephen Michael, Le, An Van, Herzberg, Amir
Primary Examiner(s)
Ton, David

Application Number

US09/560,334
Time in Patent Office

1,342 Days
Field of Search

235/380, 340/825.34, 380/25, 380/50, 380/9, 380/46, 380/4, 707/104, 714/36, 713/200, 713/202, 713/187, 369/84
US Class Current

726/24
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2211/008   Public Key, Asymmetric Key,...

Method and system for the secured distribution of multimedia titles

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

24 Citations

38 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for the secured distribution of multimedia titles

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

24 Citations

38 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links