WO1998050841A1 - Systeme, procede et appareil pour eviter le telechargement non autorise de donnees - Google Patents
Systeme, procede et appareil pour eviter le telechargement non autorise de donnees Download PDFInfo
- Publication number
- WO1998050841A1 WO1998050841A1 PCT/EP1998/002591 EP9802591W WO9850841A1 WO 1998050841 A1 WO1998050841 A1 WO 1998050841A1 EP 9802591 W EP9802591 W EP 9802591W WO 9850841 A1 WO9850841 A1 WO 9850841A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- data
- validating
- communications
- communicating
- download
- Prior art date
Links
- 230000002265 prevention Effects 0.000 title claims abstract description 7
- 238000000034 method Methods 0.000 title claims description 17
- 238000013475 authorization Methods 0.000 claims abstract description 13
- 238000010200 validation analysis Methods 0.000 claims abstract description 12
- 238000004891 communication Methods 0.000 claims description 26
- 238000013514 software validation Methods 0.000 claims description 3
- 238000012795 verification Methods 0.000 claims 1
- 230000001413 cellular effect Effects 0.000 description 8
- 238000012545 processing Methods 0.000 description 5
- 230000006870 function Effects 0.000 description 3
- 238000004590 computer program Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000003213 activating effect Effects 0.000 description 1
- 239000008186 active pharmaceutical agent Substances 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 239000003795 chemical substances by application Substances 0.000 description 1
- 230000001419 dependent effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/109—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by using specially-adapted hardware at the client
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/16—Program or content traceability, e.g. by watermarking
Definitions
- the present invention relates to a system, method and apparatus for the prevention of unauthorised data download, in particular, the prevention of unauthorised software download.
- DE-A1-4 404 327 discloses a system comprising a source computer and a client computer, both possessing a code.
- the code possessed by the source computer is transmitted to the client computer for comparison before data is downloaded from the source computer to the client computer.
- Software Validation Certificate can be used and can contain information relating to system privileges possessed by the software, for example, full access to all device hardware and software function, and ability to execute only with no access to other programs, data or hardware.
- the certificate, or the above-described codes are downloaded with the software; the code (as described in relation to US 4, 528, 643 and DE-A1-4 404 327) or the certificate is transmitted to the client computer and so is susceptible to fraud, for example, an individual possessing equipment to receive the code can achieve execution of the software without payment.
- a system for the prevention of unauthorised data download comprising a first communicating means capable of downloading data from a second communicating means, the first communicating means having a store for receiving a validation code and being provided with a validating means arranged to use the validating code so as to verify whether the first communicating means is authorised to download the data from the second communicating means.
- a method of preventing unauthorised download of data in a system having a first communications means capable of downloading data from a second communications means comprising the steps of: obtaining a validation code, requesting download of data from the second communications means, verifying that the first communications means is authorised to download the data using the validation code.
- a data terminal apparatus comprising a communicating means for receiving data from a second communicating means, a store for receiving a validation code other than from the second communicating means, and a validating means arranged to use the validating code to verify whether the first communications means is authorised to download data from the second communications means.
- FIG. 1 shows a system which is capable of constituting an embodiment of the present invention
- FIG. 2 is a schematic diagram of a computer constituting an embodiment of the present invention.
- FIG. 3 is a flow diagram of a method for use with the system and computer of FIG. l and FIG. 2.
- a system 100 comprises a client computer 101 located within a geographical area 107 and capable of communicating with a source computer 112.
- the client computer 101 is connected to a cellular telephone 102, which is in communication with a Base Transceiver Station (BTS) 106, via a radio interface 104. It is conceivable to combine the cellular telephone 102 with the client computer 101 in a single unit.
- BTS Base Transceiver Station
- the BTS is connected to a wire line infrastructure 110, for example, an Integrated Service Digital Network (ISDN), via a cellular infrastructure 108, for example, a Global System for Mobile communication (GSM), the wire line infrastructure 110 being connected to the source computer 112 from which download of software is desired.
- a wire line infrastructure 110 for example, an Integrated Service Digital Network (ISDN)
- ISDN Integrated Service Digital Network
- GSM Global System for Mobile communication
- source computer 112 has been described as being connected to the client computer 101 via a cellular infrastructure 108, other infrastructures are envisaged, for example, any wireless system, such as a Universal Mobile Telephone System (UMTS) or an infra-red system.
- UMTS Universal Mobile Telephone System
- the cellular telephone 102 and the cellular infrastructure 108 can be replaced with a modem (not shown) connected directly to the wire line infrastructure 110.
- the client computer 101 possesses an I/O card 204 (FIG. 2) for interfacing the client computer 101 with the cellular telephone 102.
- the I/O card 204 is connected to a processing unit 206, the structure and function of which is known in the art. The structure of the processing unit 206 is not considered relevant to the present invention and so will not be described in any further detail.
- the processing unit 206 is connected to an authorisation module 200 and a download store 208 for storing downloaded data, including software.
- the authorisation module 200 is also connected to the I/O card 204 via the processing unit 206.
- the download store 208, a certificate store 212 and a Man Machine Interface (MMI) 210 for example, a keyboard and a display, a touch-screen or a voice recognition unit, the MMI 210 also being connected to the processing unit 206.
- MMI Man Machine Interface
- a user is pre-provided with a Software Validation Certificate (SVC) from the proprietor of the source computer 112 and which is stored in the certificate store 212.
- SVC Software Validation Certificate
- DAC Device Authorisation Certificate
- the user instructs the client computer 101 to contact the source computer 112 using the cellular telephone 102 (step 302).
- the source computer enables the authorisation module 200 (step 304). This is achieved by either transmitting a Software Authorisation Agent (SAA) to the client computer for storage in the authorisation module 200, or by having the SAA pre- resident in the authorisation module 200 and activating the SAA via a message from the source computer 112.
- SAA Software Authorisation Agent
- Information relating to the SVC or DAC is included within the SAA.
- the SAA is a computer program, or a suite of computer programs/processes, the SAA can be embodied by other techniques known in the art to validate the SVC, for example, an electronic circuit.
- the SAA verifies whether the SVC is valid, and so download of the software is authorised or invalid and download should be denied (step 306). If the SVC is valid, the user is advised, via the MMI 210, that download of the software is authorised (step 310) and an encrypted message is sent to the source computer 112 (step 311), after which download of the software from the source computer 112 to the client computer 101 takes place (step 312), the downloaded software being stored in the download store 208.
- the downloaded software can be encrypted and the SAA can be provided with a decryption key for decrypting the encrypted software.
- the decryption key can be a function of the SVC or the DAC.
- the SAA can perform the decryption of the downloaded encrypted software.
- the source computer 112 can interrogate the client computer 101 in order to ascertain what preferences , if any, relating to the software the user might have, for example, language, configuration, or version. The user is then free to execute the software. If, however, the SVC is not valid, the user is advised, via the MMI 210, that download of the software is denied (step 308) and the source computer 112 is sent a download denied message to this effect (step 314).
- the download denied message can be encrypted.
- the user can be advised, via the MMI 210, as to the reason for the download being denied and any possible recommended subsequent action which can be take by the user, for example, contacting the software licensor for authorisation.
- the SAA can subsequently be deleted from the authorisation module 200.
- the SAA can also be empowered to validate the DAC.
- the DAC can optionally be downloaded from the source computer 112 to the client computer 101 with the SAA.
- Other authorisation tests known in the art can also be carried out by the SAA, for example, the SAA can determine whether the client computer 101 is capable of handling a software watermark which can be present in the software to be downloaded.
- the source computer has been charged with the task of sending the SAA and communicating with the SAA in the above example, it is not intended that the invention be limited to this example. It is envisaged that the infrastructure being used can also handle the transmission of and communication with the SAA.
- FPLMTS Future Public Private Land Mobile Telecommunications System
- PCS Personal Communications System
- ITS Intelligent Transportation System
- the above embodiments can be implemented via the exchange of information between the SAA and a software environment which is resident in the client computer 101.
- the interface between the SAA and the software environment can be an Application Programmers Interface (API).
- API Application Programmers Interface
- the existence of APIs is known in the art.
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
AU79104/98A AU7910498A (en) | 1997-05-01 | 1998-04-29 | System, method and apparatus for the prevention of unauthorised data download |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB9708911A GB2324935A (en) | 1997-05-01 | 1997-05-01 | Prevention of unauthorised data download |
GB9708911.4 | 1997-05-01 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO1998050841A1 true WO1998050841A1 (fr) | 1998-11-12 |
Family
ID=10811686
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/EP1998/002591 WO1998050841A1 (fr) | 1997-05-01 | 1998-04-29 | Systeme, procede et appareil pour eviter le telechargement non autorise de donnees |
Country Status (3)
Country | Link |
---|---|
AU (1) | AU7910498A (fr) |
GB (1) | GB2324935A (fr) |
WO (1) | WO1998050841A1 (fr) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7065342B1 (en) | 1999-11-23 | 2006-06-20 | Gofigure, L.L.C. | System and mobile cellular telephone device for playing recorded music |
GB2364139B (en) * | 1999-12-22 | 2004-05-26 | Ibm | A security mechanism providing access control for locally-held data |
JP4529233B2 (ja) * | 2000-02-21 | 2010-08-25 | ソニー株式会社 | 複合端末の制御方法及び複合端末装置 |
AU2001276412A1 (en) * | 2001-04-30 | 2002-11-11 | Nokia Corporation | Protection of content reproduction using digital rights |
EP2432190A3 (fr) | 2001-06-27 | 2014-02-19 | SKKY Incorporated | Plate-forme de distribution de contenus de supports ameliorée |
US9712582B2 (en) | 2001-06-27 | 2017-07-18 | Skky, Llc | Telephone initiated protocol-improved media delivery platform |
WO2019019126A1 (fr) * | 2017-07-27 | 2019-01-31 | Oppo广东移动通信有限公司 | Procédé et terminal de commande de terminal partagé |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4999806A (en) * | 1987-09-04 | 1991-03-12 | Fred Chernow | Software distribution system |
US5103476A (en) * | 1990-11-07 | 1992-04-07 | Waite David P | Secure system for activating personal computer software at remote locations |
WO1993001550A1 (fr) * | 1991-07-01 | 1993-01-21 | Infologic Software, Inc. | Systeme et methode de gestion de licences |
WO1994007204A1 (fr) * | 1992-09-21 | 1994-03-31 | Uniloc (Singapore) Private Limited | Systeme de logiciel de reservation |
US5319705A (en) * | 1992-10-21 | 1994-06-07 | International Business Machines Corporation | Method and system for multimedia access control enablement |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
GB2241133A (en) * | 1990-02-14 | 1991-08-21 | Motorola Inc | Radiotelephone having removable memory means for storing radio user validation code |
EP0456386B1 (fr) * | 1990-05-11 | 1998-11-11 | International Computers Limited | Commande d'accès dans un système informatique réparti |
US5349643A (en) * | 1993-05-10 | 1994-09-20 | International Business Machines Corporation | System and method for secure initial program load for diskless workstations |
US5400403A (en) * | 1993-08-16 | 1995-03-21 | Rsa Data Security, Inc. | Abuse-resistant object distribution system and method |
-
1997
- 1997-05-01 GB GB9708911A patent/GB2324935A/en not_active Withdrawn
-
1998
- 1998-04-29 AU AU79104/98A patent/AU7910498A/en not_active Abandoned
- 1998-04-29 WO PCT/EP1998/002591 patent/WO1998050841A1/fr active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4999806A (en) * | 1987-09-04 | 1991-03-12 | Fred Chernow | Software distribution system |
US5103476A (en) * | 1990-11-07 | 1992-04-07 | Waite David P | Secure system for activating personal computer software at remote locations |
WO1993001550A1 (fr) * | 1991-07-01 | 1993-01-21 | Infologic Software, Inc. | Systeme et methode de gestion de licences |
WO1994007204A1 (fr) * | 1992-09-21 | 1994-03-31 | Uniloc (Singapore) Private Limited | Systeme de logiciel de reservation |
US5319705A (en) * | 1992-10-21 | 1994-06-07 | International Business Machines Corporation | Method and system for multimedia access control enablement |
Also Published As
Publication number | Publication date |
---|---|
GB9708911D0 (en) | 1997-06-25 |
AU7910498A (en) | 1998-11-27 |
GB2324935A (en) | 1998-11-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
KR101409634B1 (ko) | 무선 네트워크에서의 컨텐츠 보호를 위한 방법 및 장치 | |
US7215779B2 (en) | Information providing apparatus and method, information processing apparatus and method, and program storage medium | |
EP1529371B1 (fr) | Surveillance d'un contenu numerique fourni par un fournisseur de contenu sur un reseau | |
JP4482451B2 (ja) | 暗号化されたユーザデータオブジェクトの伝送方法 | |
US7568234B2 (en) | Robust and flexible digital rights management involving a tamper-resistant identity module | |
US7617158B2 (en) | System and method for digital rights management of electronic content | |
US20040266395A1 (en) | Process for securing a mobile terminal and applications of the process for executing applications requiring a high degree of security | |
US20060107327A1 (en) | Methods and apparatus for enforcing application level restrictions on local and remote content | |
EP2036234A2 (fr) | Procédé et appareil permettant la restitution d'un objet de gestion de droits | |
KR20070050712A (ko) | Srm의 디지털 저작권 관리 방법 및 장치 | |
CN100445925C (zh) | 访问控制设备、电子设备和访问控制方法 | |
JP4987850B2 (ja) | マルチメディアコンテンツへのアクセスを管理するためのセキュリティ方法及びデバイス | |
JP2002024178A (ja) | コンテンツ認証システム、コンテンツ認証方法及び記録媒体 | |
KR20040028086A (ko) | 무선단말에서의 컨텐츠 저작권 관리 시스템 및 그 방법 | |
WO1998050841A1 (fr) | Systeme, procede et appareil pour eviter le telechargement non autorise de donnees | |
KR101074068B1 (ko) | 홈네트워크 서비스를 위한 통합 인증 시스템 및 방법 | |
KR100431215B1 (ko) | 홈 게이트웨이에서 네트워크 서비스를 인증받는 방법 및이러한 인증을 중계하는 방법 | |
KR100611119B1 (ko) | Drm 기반의 wipi 컨텐츠 서비스 방법 및 장치 | |
EP1590919A1 (fr) | Procede permettant d'etablir une connexion securisee a l'aide de cles publique et privee generees dans un terminal d'utilisateur | |
KR20090036669A (ko) | 휴대용 단말기에서 다운로드 컨텐츠를 공유하기 위한 방법및 장치 | |
KR20060117786A (ko) | Drm 기반의 멀티미디어 컨텐츠 서비스 방법 및 장치 | |
KR20060117778A (ko) | Drm 기반의 vod 컨텐츠 서비스 방법 및 장치 | |
KR20020087656A (ko) | 무선통신기를 이용한 정당 이용자 인증 방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |
|
NENP | Non-entry into the national phase |
Ref country code: CA |
|
122 | Ep: pct application non-entry in european phase | ||
NENP | Non-entry into the national phase |
Ref country code: JP Ref document number: 1998547717 Format of ref document f/p: F |