CN102043642B - Product booting method and system - Google Patents
Product booting method and system Download PDFInfo
- Publication number
- CN102043642B CN102043642B CN2009102040500A CN200910204050A CN102043642B CN 102043642 B CN102043642 B CN 102043642B CN 2009102040500 A CN2009102040500 A CN 2009102040500A CN 200910204050 A CN200910204050 A CN 200910204050A CN 102043642 B CN102043642 B CN 102043642B
- Authority
- CN
- China
- Prior art keywords
- product
- log
- data
- electronic installation
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The present invention provides a product booting method and a system thereof. First, an electronic apparatus transmits a corresponding machine identification code to a server. The server encrypts booting data according to the machine identification code and signs the booting data according to a private key before transmitting the encrypted and signed booting data to the electronic apparatus. Uponreceiving the booting data, the electronic apparatus starts a product according to the encrypted and signed booting data.
Description
Technical field
The invention relates to that a kind of product starts method and system, and be particularly to a kind of method and system that can finish the product startup by network utilisation enciphering/deciphering and signature technology.
Background technology
In recent years, electronic installation is as computing machine and portable apparatus, as greater functionalityization that becomes such as mobile phone, intelligent mobile phone, personal digital assistants.For instance, can have application program miscellaneous in the electronic installation, carry out application miscellaneous so that the user to be provided.Because the facility of these devices also makes these devices become one of daily necessities of people.
In general, the application program in the electronic installation must be bought to application provider, to obtain proper right to use.In some cases, the user can obtain product earlier, and product is mounted in the electronic installation.Afterwards, the user can obtain the log-on data of corresponding product to the supplier of product, as product serial number etc., log-on data is inputed in the product, to finish the startup of product again.
Known ground, product is very difficult with the management of corresponding log-on data.In some cases, the user may only buy a cover product, but this product is installed on many electronic installations, and starts product with identical log-on data.In some cases, the user may disseminate log-on data, makes other user who obtains this log-on data can utilize this log-on data to start product without permission, thus the intellectual property of infringement corresponding product.
Summary of the invention
In view of this, the invention provides product and start method and system.
A kind of product start-up system of the embodiment of the invention comprises an electronic installation and a server.Electronic installation has a machine identifier and a product.Electronic installation transmits machine identifier to server.Server is according to machine recognition code encryption one log-on data, and foundation one private key is signed for log-on data.Log-on data after server will be encrypted and sign is sent to electronic installation.Receive after the log-on data, electronic installation starts product according to the log-on data after encrypting and signing.
A kind of product startup method of the embodiment of the invention is applicable to a server.At first, receive a machine identifier of a corresponding electronic installation.Then, according to machine recognition code encryption one log-on data, and foundation one private key is signed for log-on data.Afterwards, the log-on data after transmission is encrypted and signed is to electronic installation.Receive after the log-on data, electronic installation starts a product according to the log-on data after encrypting and signing.
A kind of product startup method of the embodiment of the invention is applicable to an electronic installation.At first, receive a log-on data by a server.Then, verify for a signature of log-on data according to a PKI of respective server.When the checking of the signature of corresponding log-on data by the time, obtain a machine identifier of electronic installation, and be decrypted for log-on data according to machine identifier.Afterwards, start a product according to log-on data.
In certain embodiments, electronic installation also transmits a product serial number to server.Server captures corresponding at least one specific function according to product serial number, and specific function is packaged in the log-on data, and the log-on data that will comprise specific function is sent to electronic installation.Receive after the log-on data, electronic installation is according to the specific function in the log-on data startup product.
In certain embodiments, electronic installation also transmits a product serial number to server.Server manages according to product serial number and the machine identifier log-on data for corresponding product.
Said method of the present invention can exist by the procedure code mode.When procedure code was loaded and carries out by machine, machine became in order to carry out device of the present invention.
For above-mentioned purpose of the present invention, feature and advantage can be become apparent, embodiment cited below particularly, and cooperate appended diagram, be described in detail as follows.
Description of drawings
Fig. 1 is that a synoptic diagram is the product start-up system that shows according to the embodiment of the invention.
Fig. 2 is that a process flow diagram is the product startup method that shows according to the embodiment of the invention.
Fig. 3 is that a process flow diagram is the product startup method that shows according to another embodiment of the present invention.
[main element label declaration]
100~server;
110,120,130~electronic installation;
S210, S220 ..., S280~step;
S310, S320 .., S390~step.
Embodiment
Fig. 1 shows the product start-up system according to the embodiment of the invention.
Product start-up system according to the embodiment of the invention comprises a server 100 and at least one electronic installation (110,120,130).Each electronic installation can be connected to server 100.In certain embodiments, electronic installation can be by a network connection to server 100.Electronic installation can have a machine identifier, and a product is installed, as application program.It should be noted that in certain embodiments machine identifier can be the identification code of the operating system in the electronic installation, or the hardware in the electronic installation, as the identification code of display card.Server 100 can be the supplier of product in the electronic installation.Electronic installation must be obtained the log-on data of corresponding product by server 100, to start.In the electronic installation startup method of product will in after describe.
Fig. 2 shows the product startup method according to the embodiment of the invention.
As step S210, electronic installation 110 transmits a corresponding machine identifier to server 100.Similarly, machine identifier can be the identification code of the operating system in the electronic installation 110, or the identification code of the hardware in the electronic installation 110.After server 100 received machine identifier by electronic installation 110, as step S220, server 100 was according to machine recognition code encryption one log-on data that receives.It should be noted that log-on data can comprise in order to start a product in the electronic installation 110, as the necessary information of application program.As step S230, server 100 is signed for log-on data according to a private key.What remind is that aforementioned private key can be server 100 employed private key in asymmetric encryption mechanism.Afterwards, as step S240, the log-on data after server 100 will be encrypted and sign is sent to electronic installation 110.After electronic installation 110 received log-on data by server 100, as step S250, electronic installation 110 was verified for the signature of log-on data according to a PKI of respective server.What note is that above-mentioned PKI is server 100 employed PKI in asymmetric encryption mechanism.If the authentication of the signature of corresponding log-on data is not by (step S260 denys), process ends.For instance, if the log-on data that receives of electronic installation 110 is not when being signed by server 100, then the product in the electronic installation 110 can't be activated.If the authentication of the signature of corresponding log-on data is by (step S260 is), as step S270, machine identifier according to electronic installation 110 is decrypted for the log-on data that is received by server 100, and as step S280, starts product according to the log-on data after the deciphering.
Fig. 3 shows the product startup method according to another embodiment of the present invention.
As step S310, electronic installation 110 transmits a product serial number of a corresponding machine identifier and a corresponding product to server 100.Similarly, machine identifier can be the identification code of the operating system in the electronic installation 110, or the identification code of the hardware in the electronic installation 110.After server 100 received machine identifier and product serial number by electronic installation 110, as step S320, server 100 captured corresponding at least one specific function according to product serial number.It should be noted that in certain embodiments, product serial number can be by a client in advance by a main frame, carry out related application and buy operation to obtain as server 100.In certain embodiments, product can have a plurality of functions, and all or part of specific function in the product can be applied with/or buy.Each product serial number can correspond at least one specific function of corresponding product.Then, as step S330, server 100 is according to machine recognition code encryption one log-on data that is received by electronic installation 110.What note is can record the specific function that captures in the log-on data.Similarly, log-on data can also comprise in order to start the necessary information of the product in the electronic installation 110.As step S340, server 100 is signed for log-on data according to a private key.Similarly, aforementioned private key can be server 100 employed private key in asymmetric encryption mechanism.Afterwards, as step S350, the log-on data after server 100 will be encrypted and sign is sent to electronic installation 110.After electronic installation 110 received log-on data by server 100, as step S360, electronic installation 110 was verified for the signature of log-on data according to a PKI of respective server.Similarly, above-mentioned PKI is server 100 employed PKI in asymmetric encryption mechanism.If the authentication of the signature of corresponding log-on data is not by (step S370 denys), process ends.If the authentication of the signature of corresponding log-on data is by (step S370 is), as step S380, machine identifier according to electronic installation 110 is decrypted for the log-on data that is received by server 100, and as step S390, starts product according to the log-on data after the deciphering.It should be noted that therefore, the specific function of product will be activated owing in the log-on data record specific function is arranged.
It should be noted that, in certain embodiments, server receives relevant information by electronic installation, after the network address as machine identifier, product serial number and/or respective electronic device 110, can also manage according to the log-on data of the relevant information that receives for product and corresponding product.For instance, for the electronic installation of same machines identification code require the number of times of log-on data record, with record product sequence number, machine identifier, and the network address in conjunction with situation etc., to judge whether product serial number suffers to propagate or pirate the use, further to abrogate product serial number.
Therefore, start method and system by product of the present invention and can finish the product startup by network utilisation enciphering/deciphering and signature technology.In the present invention, because the log-on data of corresponding product and the machine identifier of electronic installation carry out combination.Therefore, log-on data can't be transplanted on other electronic installation and use, thus the possibility of avoiding product to be used by piracy.
Method of the present invention, or specific kenel or its part can exist with the kenel of procedure code.Procedure code can be contained in tangible media, get (as embodied on computer readable) Storage Media as floppy disk, CD sheet, hard disk or any other machine readable, also or be not limited to the computer program of external form, wherein, when procedure code by machine, when loading and carrying out as computing machine, this machine becomes in order to participate in device of the present invention.Procedure code also can pass through some transfer mediums, transmit as electric wire or cable, optical fiber or any transmission kenel, wherein, when procedure code by machine, when receiving, loading and carrying out as computing machine, this machine becomes in order to participate in device of the present invention.When the general service processing unit is done in fact, procedure code provides a class of operation to be similar to the unique apparatus of using particular logic circuit in conjunction with processing unit.
Though the present invention discloses as above with preferred embodiment; so it is not in order to limit the present invention; any those skilled in the art; without departing from the spirit and scope of the present invention; when can doing a little change and retouching, so protection scope of the present invention is as the criterion when looking appended the claim scope person of defining.
Claims (11)
1. a product startup method comprises the following steps:
Server
Receive a machine identifier of a corresponding electronic installation;
According to this machine recognition code encryption one log-on data;
Sign for this log-on data according to a private key; And
Transmit to encrypt and signature after this log-on data to this electronic installation,
Wherein, this electronic installation starts a product according to this log-on data after encrypting and signing,
This product startup method also comprises the following steps:
Server also
Receive mutually should product a product serial number; And
Capture corresponding at least one specific function according to this product serial number, and this specific function is packaged in this log-on data, wherein, product has a plurality of functions, and each product serial number corresponds at least one specific function of corresponding product,
Wherein, this electronic installation starts this specific function in this product according to this log-on data.
2. product startup method according to claim 1, wherein, this electronic installation according to encrypt and signature after this log-on data method of starting this product comprise the following steps:
Verify for this signature of this log-on data according to a PKI that mutually should private key;
When the checking of this signature that mutually should log-on data by the time, be decrypted for this log-on data after encrypting according to this machine identifier; And
Start this product according to this log-on data.
3. product startup method according to claim 1 also comprises the following steps:
Manage for this log-on data that mutually should product according to this product serial number and this machine identifier.
4. product startup method according to claim 1, wherein, this machine identifier comprises an identification code of the operating system in this electronic installation or an identification code of the hardware in this electronic installation.
5. a product startup method is applicable to an electronic installation, comprises the following steps:
Receive a log-on data by a server;
Verify for a signature of this log-on data according to a PKI that mutually should server;
When the checking of this signature that mutually should log-on data by the time, obtain a machine identifier of this electronic installation, and be decrypted for this log-on data according to this machine identifier; And
Start a product according to this log-on data,
This product startup method also comprises:
This electronic installation transmits this machine identifier and a product serial number that mutually should product to this server;
This server captures corresponding at least one specific function according to this product serial number, and this specific function is packaged in this log-on data, and wherein, product has a plurality of functions, and each product serial number corresponds at least one specific function of corresponding product;
This server is encrypted for this log-on data that comprises this specific function according to this machine identifier; And
This electronic installation starts this specific function in this product according to this log-on data.
6. product startup method according to claim 5, wherein, this server manages for this log-on data that mutually should product according to this product serial number and this machine identifier.
7. product startup method according to claim 5, wherein, this machine identifier comprises an identification code of the operating system in this electronic installation or an identification code of the hardware in this electronic installation.
8. product start-up system comprises:
Electronic installation has product and machine identifier, and this machine identifier is transmitted; And
Server in order to receive this machine identifier by this electronic installation, according to this machine recognition code encryption one log-on data, is signed for this log-on data according to private key, and transmit to encrypt and signature after this log-on data to this electronic installation,
Wherein, this electronic installation starts a product according to this log-on data after encrypting and signing,
Wherein, this electronic installation also will be mutually should product a product serial number be sent to this server, and this server also captures corresponding at least one specific function according to this product serial number, and this specific function is packaged in this log-on data, wherein, this electronic installation starts this specific function in this product according to this log-on data
Wherein, product has a plurality of functions, and each product serial number corresponds at least one specific function of corresponding product.
9. product start-up system according to claim 8, wherein, this electronic installation is also verified for this signature of this log-on data according to a PKI that mutually should server, when the checking of this signature that mutually should log-on data is passed through, be decrypted for this log-on data after encrypting according to this machine identifier, and start this product according to this log-on data.
10. product start-up system according to claim 8, wherein, this server also manages for this log-on data that mutually should product according to this product serial number and this machine identifier.
11. product start-up system according to claim 8, wherein, this machine identifier comprises an identification code of the operating system in this electronic installation or an identification code of the hardware in this electronic installation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009102040500A CN102043642B (en) | 2009-10-12 | 2009-10-12 | Product booting method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009102040500A CN102043642B (en) | 2009-10-12 | 2009-10-12 | Product booting method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102043642A CN102043642A (en) | 2011-05-04 |
| CN102043642B true CN102043642B (en) | 2013-10-02 |
Family
ID=43909801
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009102040500A Active CN102043642B (en) | 2009-10-12 | 2009-10-12 | Product booting method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102043642B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110298145B (en) * | 2019-06-28 | 2022-03-18 | 兆讯恒达科技股份有限公司 | Firmware program loading protection method based on public key cryptographic algorithm |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1741445A (en) * | 2004-08-27 | 2006-03-01 | 英业达股份有限公司 | Method for encrypting and protecting applied program |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7487502B2 (en) * | 2003-02-19 | 2009-02-03 | Intel Corporation | Programmable event driven yield mechanism which may activate other threads |
| KR20040104778A (en) * | 2003-06-04 | 2004-12-13 | 삼성전자주식회사 | Method for setting up home domain by device authentication using smart card, and smart card for the same |
-
2009
- 2009-10-12 CN CN2009102040500A patent/CN102043642B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1741445A (en) * | 2004-08-27 | 2006-03-01 | 英业达股份有限公司 | Method for encrypting and protecting applied program |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102043642A (en) | 2011-05-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111080295B (en) | Electronic contract processing method and device based on blockchain | |
| CN1997953B (en) | Method and device for protecting digital content in mobile applications | |
| KR101891420B1 (en) | Content protection for data as a service (daas) | |
| CN100583083C (en) | Apparatus and method for processing digital rights object | |
| US8966653B2 (en) | Method and apparatus for provisioning a mobile application | |
| EP2095288B1 (en) | Method for the secure storing of program state data in an electronic device | |
| CN101977190B (en) | Digital content encryption transmission method and server side | |
| CN102123031A (en) | Hardware attestation techniques | |
| CN105493097A (en) | Protection scheme for remotely-stored data | |
| CN102857408A (en) | Stateless application notifier | |
| US20160323100A1 (en) | Key generation device, terminal device, and data signature and encryption method | |
| CN102802036A (en) | System and method for identifying digital television | |
| CN110611657A (en) | File stream processing method, device and system based on block chain | |
| CN103380592A (en) | Method, server and system for authentication of a person | |
| CN102281300A (en) | digital rights management license distribution method and system, server and terminal | |
| CN101286994A (en) | Digital literary property management method, server and system for content sharing within multiple devices | |
| CN101763469A (en) | Digital copyright management system and implementation method thereof | |
| US20130174282A1 (en) | Digital right management method, apparatus, and system | |
| CN103186720A (en) | Digital rights management method, equipment and system | |
| CN114780923A (en) | Electronic seal management and control method and system | |
| CN114465803A (en) | Object authorization method, device, system and storage medium | |
| CN106411520B (en) | Method, device and system for processing virtual resource data | |
| CN112507296A (en) | User login verification method and system based on block chain | |
| CN113360217A (en) | Rule engine SDK calling method and device and storage medium | |
| CN101252432B (en) | Field managing server and system, digital authority managing method based on field |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |