Software verification system, method and computer program element
First Claim
1. A verification system for a computer software installation, comprising:
- a primary library file, the primary library file having a digital signature;
a loader program arranged to obtain a digital signature key and further arranged to load the primary library file; and
a plurality of secondary files arranged to be referenced by the primary library file, each of the plurality of secondary files having a digital signature;
wherein the loader program is arranged to verify and selectively load the primary library file by comparing the obtained digital signature key with the digital signature of the primary library file, the primary library file being further arranged to subsequently verify and selectively load the plurality of secondary files by calling the loader program to compare the obtained digital signature key with the digital signature of each of the plurality of secondary files.
2 Assignments
0 Petitions
Accused Products
Abstract
A software security system is arranged to verify the authenticity of each element of a Java Virtual Machine installation. A digital signature is attached to each file of the JVM installation. A loader (20) verifies the digital signature of the JVM DLL (30). The JVM DLL 30 then verifies the digital signature of each other DLL and configuration file to be loaded (40, 50, 60, 70), and only loads those files which have successfully verified digital signatures. In this way the security of the JVM is enhanced, a user has greater confidence that the Java applications will function correctly, and the detection of incorrect or damaged JVM installations is improved.
-
Citations
13 Claims
-
1. A verification system for a computer software installation, comprising:
-
a primary library file, the primary library file having a digital signature;
a loader program arranged to obtain a digital signature key and further arranged to load the primary library file; and
a plurality of secondary files arranged to be referenced by the primary library file, each of the plurality of secondary files having a digital signature;
wherein the loader program is arranged to verify and selectively load the primary library file by comparing the obtained digital signature key with the digital signature of the primary library file, the primary library file being further arranged to subsequently verify and selectively load the plurality of secondary files by calling the loader program to compare the obtained digital signature key with the digital signature of each of the plurality of secondary files. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A verification method for a computer software installation, the method comprising the steps of:
-
launching a loader program arranged to load files and further arranged to obtain a digital signature key;
using the loader program to verify the authenticity of a digital signature incorporated in a primary library file by comparing said digital signature with the digital signature key;
selectively loading the primary library file in dependence upon the successful verification of its digital signature;
using the primary library file and the loader program to verify the authenticity of digital signatures incorporated in each of the secondary files by comparing them with the digital signature key; and
,selectively loading the secondary files in dependence upon the successful verification of their digital signatures. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
Specification