+

WO1998050841A1 - Systeme, procede et appareil pour eviter le telechargement non autorise de donnees - Google Patents

Systeme, procede et appareil pour eviter le telechargement non autorise de donnees Download PDF

Info

Publication number
WO1998050841A1
WO1998050841A1 PCT/EP1998/002591 EP9802591W WO9850841A1 WO 1998050841 A1 WO1998050841 A1 WO 1998050841A1 EP 9802591 W EP9802591 W EP 9802591W WO 9850841 A1 WO9850841 A1 WO 9850841A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
validating
communications
communicating
download
Prior art date
Application number
PCT/EP1998/002591
Other languages
English (en)
Inventor
William Neil Robinson
Original Assignee
Motorola Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Motorola Ltd. filed Critical Motorola Ltd.
Priority to AU79104/98A priority Critical patent/AU7910498A/en
Publication of WO1998050841A1 publication Critical patent/WO1998050841A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/109Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by using specially-adapted hardware at the client
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/16Program or content traceability, e.g. by watermarking

Definitions

  • the present invention relates to a system, method and apparatus for the prevention of unauthorised data download, in particular, the prevention of unauthorised software download.
  • DE-A1-4 404 327 discloses a system comprising a source computer and a client computer, both possessing a code.
  • the code possessed by the source computer is transmitted to the client computer for comparison before data is downloaded from the source computer to the client computer.
  • Software Validation Certificate can be used and can contain information relating to system privileges possessed by the software, for example, full access to all device hardware and software function, and ability to execute only with no access to other programs, data or hardware.
  • the certificate, or the above-described codes are downloaded with the software; the code (as described in relation to US 4, 528, 643 and DE-A1-4 404 327) or the certificate is transmitted to the client computer and so is susceptible to fraud, for example, an individual possessing equipment to receive the code can achieve execution of the software without payment.
  • a system for the prevention of unauthorised data download comprising a first communicating means capable of downloading data from a second communicating means, the first communicating means having a store for receiving a validation code and being provided with a validating means arranged to use the validating code so as to verify whether the first communicating means is authorised to download the data from the second communicating means.
  • a method of preventing unauthorised download of data in a system having a first communications means capable of downloading data from a second communications means comprising the steps of: obtaining a validation code, requesting download of data from the second communications means, verifying that the first communications means is authorised to download the data using the validation code.
  • a data terminal apparatus comprising a communicating means for receiving data from a second communicating means, a store for receiving a validation code other than from the second communicating means, and a validating means arranged to use the validating code to verify whether the first communications means is authorised to download data from the second communications means.
  • FIG. 1 shows a system which is capable of constituting an embodiment of the present invention
  • FIG. 2 is a schematic diagram of a computer constituting an embodiment of the present invention.
  • FIG. 3 is a flow diagram of a method for use with the system and computer of FIG. l and FIG. 2.
  • a system 100 comprises a client computer 101 located within a geographical area 107 and capable of communicating with a source computer 112.
  • the client computer 101 is connected to a cellular telephone 102, which is in communication with a Base Transceiver Station (BTS) 106, via a radio interface 104. It is conceivable to combine the cellular telephone 102 with the client computer 101 in a single unit.
  • BTS Base Transceiver Station
  • the BTS is connected to a wire line infrastructure 110, for example, an Integrated Service Digital Network (ISDN), via a cellular infrastructure 108, for example, a Global System for Mobile communication (GSM), the wire line infrastructure 110 being connected to the source computer 112 from which download of software is desired.
  • a wire line infrastructure 110 for example, an Integrated Service Digital Network (ISDN)
  • ISDN Integrated Service Digital Network
  • GSM Global System for Mobile communication
  • source computer 112 has been described as being connected to the client computer 101 via a cellular infrastructure 108, other infrastructures are envisaged, for example, any wireless system, such as a Universal Mobile Telephone System (UMTS) or an infra-red system.
  • UMTS Universal Mobile Telephone System
  • the cellular telephone 102 and the cellular infrastructure 108 can be replaced with a modem (not shown) connected directly to the wire line infrastructure 110.
  • the client computer 101 possesses an I/O card 204 (FIG. 2) for interfacing the client computer 101 with the cellular telephone 102.
  • the I/O card 204 is connected to a processing unit 206, the structure and function of which is known in the art. The structure of the processing unit 206 is not considered relevant to the present invention and so will not be described in any further detail.
  • the processing unit 206 is connected to an authorisation module 200 and a download store 208 for storing downloaded data, including software.
  • the authorisation module 200 is also connected to the I/O card 204 via the processing unit 206.
  • the download store 208, a certificate store 212 and a Man Machine Interface (MMI) 210 for example, a keyboard and a display, a touch-screen or a voice recognition unit, the MMI 210 also being connected to the processing unit 206.
  • MMI Man Machine Interface
  • a user is pre-provided with a Software Validation Certificate (SVC) from the proprietor of the source computer 112 and which is stored in the certificate store 212.
  • SVC Software Validation Certificate
  • DAC Device Authorisation Certificate
  • the user instructs the client computer 101 to contact the source computer 112 using the cellular telephone 102 (step 302).
  • the source computer enables the authorisation module 200 (step 304). This is achieved by either transmitting a Software Authorisation Agent (SAA) to the client computer for storage in the authorisation module 200, or by having the SAA pre- resident in the authorisation module 200 and activating the SAA via a message from the source computer 112.
  • SAA Software Authorisation Agent
  • Information relating to the SVC or DAC is included within the SAA.
  • the SAA is a computer program, or a suite of computer programs/processes, the SAA can be embodied by other techniques known in the art to validate the SVC, for example, an electronic circuit.
  • the SAA verifies whether the SVC is valid, and so download of the software is authorised or invalid and download should be denied (step 306). If the SVC is valid, the user is advised, via the MMI 210, that download of the software is authorised (step 310) and an encrypted message is sent to the source computer 112 (step 311), after which download of the software from the source computer 112 to the client computer 101 takes place (step 312), the downloaded software being stored in the download store 208.
  • the downloaded software can be encrypted and the SAA can be provided with a decryption key for decrypting the encrypted software.
  • the decryption key can be a function of the SVC or the DAC.
  • the SAA can perform the decryption of the downloaded encrypted software.
  • the source computer 112 can interrogate the client computer 101 in order to ascertain what preferences , if any, relating to the software the user might have, for example, language, configuration, or version. The user is then free to execute the software. If, however, the SVC is not valid, the user is advised, via the MMI 210, that download of the software is denied (step 308) and the source computer 112 is sent a download denied message to this effect (step 314).
  • the download denied message can be encrypted.
  • the user can be advised, via the MMI 210, as to the reason for the download being denied and any possible recommended subsequent action which can be take by the user, for example, contacting the software licensor for authorisation.
  • the SAA can subsequently be deleted from the authorisation module 200.
  • the SAA can also be empowered to validate the DAC.
  • the DAC can optionally be downloaded from the source computer 112 to the client computer 101 with the SAA.
  • Other authorisation tests known in the art can also be carried out by the SAA, for example, the SAA can determine whether the client computer 101 is capable of handling a software watermark which can be present in the software to be downloaded.
  • the source computer has been charged with the task of sending the SAA and communicating with the SAA in the above example, it is not intended that the invention be limited to this example. It is envisaged that the infrastructure being used can also handle the transmission of and communication with the SAA.
  • FPLMTS Future Public Private Land Mobile Telecommunications System
  • PCS Personal Communications System
  • ITS Intelligent Transportation System
  • the above embodiments can be implemented via the exchange of information between the SAA and a software environment which is resident in the client computer 101.
  • the interface between the SAA and the software environment can be an Application Programmers Interface (API).
  • API Application Programmers Interface
  • the existence of APIs is known in the art.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

L'invention concerne un système pour prévenir le téléchargement non autorisé de données. Ce système comprend un ordinateur client (101) pouvant télécharger des données à partir d'un ordinateur source (112). L'ordinateur client (101) comporte une mémoire (212) pour recevoir un code de validation autrement qu'à partir de l'ordinateur source et il est pourvu d'un module d'autorisation (200) prévu pour utiliser le code de validation de manière à vérifier si l'ordinateur client (101) est autorisé à télécharger les données provenant de l'ordinateur source (112).
PCT/EP1998/002591 1997-05-01 1998-04-29 Systeme, procede et appareil pour eviter le telechargement non autorise de donnees WO1998050841A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU79104/98A AU7910498A (en) 1997-05-01 1998-04-29 System, method and apparatus for the prevention of unauthorised data download

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB9708911A GB2324935A (en) 1997-05-01 1997-05-01 Prevention of unauthorised data download
GB9708911.4 1997-05-01

Publications (1)

Publication Number Publication Date
WO1998050841A1 true WO1998050841A1 (fr) 1998-11-12

Family

ID=10811686

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP1998/002591 WO1998050841A1 (fr) 1997-05-01 1998-04-29 Systeme, procede et appareil pour eviter le telechargement non autorise de donnees

Country Status (3)

Country Link
AU (1) AU7910498A (fr)
GB (1) GB2324935A (fr)
WO (1) WO1998050841A1 (fr)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7065342B1 (en) 1999-11-23 2006-06-20 Gofigure, L.L.C. System and mobile cellular telephone device for playing recorded music
GB2364139B (en) * 1999-12-22 2004-05-26 Ibm A security mechanism providing access control for locally-held data
JP4529233B2 (ja) * 2000-02-21 2010-08-25 ソニー株式会社 複合端末の制御方法及び複合端末装置
AU2001276412A1 (en) * 2001-04-30 2002-11-11 Nokia Corporation Protection of content reproduction using digital rights
EP2432190A3 (fr) 2001-06-27 2014-02-19 SKKY Incorporated Plate-forme de distribution de contenus de supports ameliorée
US9712582B2 (en) 2001-06-27 2017-07-18 Skky, Llc Telephone initiated protocol-improved media delivery platform
WO2019019126A1 (fr) * 2017-07-27 2019-01-31 Oppo广东移动通信有限公司 Procédé et terminal de commande de terminal partagé

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4999806A (en) * 1987-09-04 1991-03-12 Fred Chernow Software distribution system
US5103476A (en) * 1990-11-07 1992-04-07 Waite David P Secure system for activating personal computer software at remote locations
WO1993001550A1 (fr) * 1991-07-01 1993-01-21 Infologic Software, Inc. Systeme et methode de gestion de licences
WO1994007204A1 (fr) * 1992-09-21 1994-03-31 Uniloc (Singapore) Private Limited Systeme de logiciel de reservation
US5319705A (en) * 1992-10-21 1994-06-07 International Business Machines Corporation Method and system for multimedia access control enablement

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2241133A (en) * 1990-02-14 1991-08-21 Motorola Inc Radiotelephone having removable memory means for storing radio user validation code
EP0456386B1 (fr) * 1990-05-11 1998-11-11 International Computers Limited Commande d'accès dans un système informatique réparti
US5349643A (en) * 1993-05-10 1994-09-20 International Business Machines Corporation System and method for secure initial program load for diskless workstations
US5400403A (en) * 1993-08-16 1995-03-21 Rsa Data Security, Inc. Abuse-resistant object distribution system and method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4999806A (en) * 1987-09-04 1991-03-12 Fred Chernow Software distribution system
US5103476A (en) * 1990-11-07 1992-04-07 Waite David P Secure system for activating personal computer software at remote locations
WO1993001550A1 (fr) * 1991-07-01 1993-01-21 Infologic Software, Inc. Systeme et methode de gestion de licences
WO1994007204A1 (fr) * 1992-09-21 1994-03-31 Uniloc (Singapore) Private Limited Systeme de logiciel de reservation
US5319705A (en) * 1992-10-21 1994-06-07 International Business Machines Corporation Method and system for multimedia access control enablement

Also Published As

Publication number Publication date
GB9708911D0 (en) 1997-06-25
AU7910498A (en) 1998-11-27
GB2324935A (en) 1998-11-04

Similar Documents

Publication Publication Date Title
KR101409634B1 (ko) 무선 네트워크에서의 컨텐츠 보호를 위한 방법 및 장치
US7215779B2 (en) Information providing apparatus and method, information processing apparatus and method, and program storage medium
EP1529371B1 (fr) Surveillance d'un contenu numerique fourni par un fournisseur de contenu sur un reseau
JP4482451B2 (ja) 暗号化されたユーザデータオブジェクトの伝送方法
US7568234B2 (en) Robust and flexible digital rights management involving a tamper-resistant identity module
US7617158B2 (en) System and method for digital rights management of electronic content
US20040266395A1 (en) Process for securing a mobile terminal and applications of the process for executing applications requiring a high degree of security
US20060107327A1 (en) Methods and apparatus for enforcing application level restrictions on local and remote content
EP2036234A2 (fr) Procédé et appareil permettant la restitution d'un objet de gestion de droits
KR20070050712A (ko) Srm의 디지털 저작권 관리 방법 및 장치
CN100445925C (zh) 访问控制设备、电子设备和访问控制方法
JP4987850B2 (ja) マルチメディアコンテンツへのアクセスを管理するためのセキュリティ方法及びデバイス
JP2002024178A (ja) コンテンツ認証システム、コンテンツ認証方法及び記録媒体
KR20040028086A (ko) 무선단말에서의 컨텐츠 저작권 관리 시스템 및 그 방법
WO1998050841A1 (fr) Systeme, procede et appareil pour eviter le telechargement non autorise de donnees
KR101074068B1 (ko) 홈네트워크 서비스를 위한 통합 인증 시스템 및 방법
KR100431215B1 (ko) 홈 게이트웨이에서 네트워크 서비스를 인증받는 방법 및이러한 인증을 중계하는 방법
KR100611119B1 (ko) Drm 기반의 wipi 컨텐츠 서비스 방법 및 장치
EP1590919A1 (fr) Procede permettant d'etablir une connexion securisee a l'aide de cles publique et privee generees dans un terminal d'utilisateur
KR20090036669A (ko) 휴대용 단말기에서 다운로드 컨텐츠를 공유하기 위한 방법및 장치
KR20060117786A (ko) Drm 기반의 멀티미디어 컨텐츠 서비스 방법 및 장치
KR20060117778A (ko) Drm 기반의 vod 컨텐츠 서비스 방법 및 장치
KR20020087656A (ko) 무선통신기를 이용한 정당 이용자 인증 방법

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase

Ref country code: CA

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

Ref document number: 1998547717

Format of ref document f/p: F

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载