CN100446023C - Method for protecting program information of program actuator - Google Patents
Method for protecting program information of program actuator Download PDFInfo
- Publication number
- CN100446023C CN100446023C CNB2006101628761A CN200610162876A CN100446023C CN 100446023 C CN100446023 C CN 100446023C CN B2006101628761 A CNB2006101628761 A CN B2006101628761A CN 200610162876 A CN200610162876 A CN 200610162876A CN 100446023 C CN100446023 C CN 100446023C
- Authority
- CN
- China
- Prior art keywords
- program
- compiling
- client
- actuator
- sign
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 125
- 230000006870 function Effects 0.000 claims description 46
- 230000008569 process Effects 0.000 claims description 34
- 238000012545 processing Methods 0.000 claims description 9
- 238000012795 verification Methods 0.000 claims description 7
- 230000006399 behavior Effects 0.000 claims description 4
- 238000003860 storage Methods 0.000 claims description 4
- 230000008859 change Effects 0.000 claims description 3
- 230000003068 static effect Effects 0.000 claims description 3
- 230000009467 reduction Effects 0.000 claims description 2
- 230000001419 dependent effect Effects 0.000 abstract 1
- 238000006243 chemical reaction Methods 0.000 description 35
- PWPJGUXAGUPAHP-UHFFFAOYSA-N lufenuron Chemical compound C1=C(Cl)C(OC(F)(F)C(C(F)(F)F)F)=CC(Cl)=C1NC(=O)NC(=O)C1=C(F)C=CC=C1F PWPJGUXAGUPAHP-UHFFFAOYSA-N 0.000 description 31
- 238000013461 design Methods 0.000 description 20
- 238000010586 diagram Methods 0.000 description 17
- 230000008676 import Effects 0.000 description 5
- 238000011161 development Methods 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 238000012986 modification Methods 0.000 description 4
- 230000008707 rearrangement Effects 0.000 description 4
- 230000008878 coupling Effects 0.000 description 2
- 238000010168 coupling process Methods 0.000 description 2
- 238000005859 coupling reaction Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 2
- XUIMIQQOPSSXEZ-UHFFFAOYSA-N Silicon Chemical compound [Si] XUIMIQQOPSSXEZ-UHFFFAOYSA-N 0.000 description 1
- 239000000654 additive Substances 0.000 description 1
- 230000000996 additive effect Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000000295 complement effect Effects 0.000 description 1
- 239000012141 concentrate Substances 0.000 description 1
- 238000005336 cracking Methods 0.000 description 1
- 238000000151 deposition Methods 0.000 description 1
- 238000005538 encapsulation Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000010884 ion-beam technique Methods 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 230000002035 prolonged effect Effects 0.000 description 1
- 229910052710 silicon Inorganic materials 0.000 description 1
- 239000010703 silicon Substances 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 238000011282 treatment Methods 0.000 description 1
Images
Landscapes
- Stored Programmes (AREA)
Abstract
The invention discloses a method to protect program information of a program actuator, which is not dependent on the procedure to prevent the program data to be read out. The technical program is: (1) Add compilation logo region in program actuator to store various compilation logos of different compilation methods, and ensure through technical ways that any customers cannot write other compilation logo from different customers in the compilation log region; (2) The compilation logo determines a corresponding compilation method from assembly program to binary machine code; (3) program actuator reads, interprets and executes machine code of customers, and the method of reading and interpreting is matched with methods in step (2).
Description
Technical field
The present invention relates to a kind of guard method of the program information to program actuator; applicable to the program actuator that is commonly referred to as microcontroller (MCU), microprocessor (μ P or MPU), digital signal processor (DSP), central processing unit (CPU), graphic process unit (GPU), and the embedded program actuator that is used for SOC (system on a chip) (System On Chip).
Background technology
Present various program actuator has obtained widely using, as microcontroller (MCU), microprocessor (μ P or MPU), digital signal processor (DSP), central processing unit (CPU), graphic process unit (GPU) and the embedded microprocessor that is used for SOC (system on a chip) (System On Chip).Usually in the application of these program actuators, need utilize non-volatile storer such as mask ROM (Mask ROM), programmable read-only memory (prom), disposable programmable ROM (read-only memory) (OTP ROM), electrically-erasable ROM (read-only memory) (EEPROM), flash memory (Flash) or disk, CD, tape to wait to deposit the program information of the machine code form that program actuator reads.The advantage that non-volatile storer is deposited machine code program is that these information can long preservation under the situation of power down and do not lose.
Fig. 1 shows the flow process of client's development sequence on program actuator in the prior art.See also Fig. 1, S11: the client obtains program actuator from chip manufacturer or suppliers; S12: the source program that the client writes on computers is compiled into machine code program in computing machine, and this source program can be assembly routine or c program etc.; S13: the client writes machine code program in the nonvolatile memory of said procedure actuator, and this nonvolatile memory can design at the program actuator chip internal, also can be arranged on outer and this actuator electric connection of sheet.Through above-mentioned steps, machine code program just can be on program actuator trouble-free operation.Then referring to Fig. 2 A and Fig. 2 B, flow process shown in Figure 1 illustrates with the form of block diagram.Wherein Fig. 2 A shows the structure of block diagram of CLIENT PROGRAM reservoir designs in sheet, and Fig. 2 B shows the structure of block diagram of CLIENT PROGRAM reservoir designs outside sheet.
But, no matter the nonvolatile memory design is in sheet or outside the sheet, final (as the silicon chip) that always is implemented on certain physical material, so any technician with background of related can both read the program information of depositing in the nonvolatile memory by the method for some physics or chemistry with lower cost.For convenience, hereinafter the person of attempting to read program information in other people the program actuator product under the situation of not being authorized is the cracker.
If the cracker reads the machine code program that is stored among storer 22A or the 22B (shown in Fig. 2 A or Fig. 2 B), can realize imitated fast by purchasing identical program actuator and writing this machine code program.And, conversion regime between the machine code instruction collection of assembly instruction collection and this program actuator is open and general, therefore the cracker can also obtain corresponding assembly routine by other people machine code program of dis-assembling, thereby the design philosophy and the algorithm of the program of acquisition also can further improve program on this basis.
For this reason; people have developed a lot of guard methods to machine code program information, and the guiding theory of these methods all is to adopt various means to prevent that machine code program is read out or strengthens time and the cost that the cracker reads machine code program from storer 22A or 22B (shown in Fig. 2 A or Fig. 2 B).For example, encrypted bits protection is set, after storer writes machine code program, enables encrypted bits and be read out finishing to prevent information.A simple method can make this protection mechanism lose efficacy: the cracker can open the integrated circuit encapsulation, uses some specific method (as focused ion beam (FIB)) control encrypted bits signal then, thereby reaches the purpose of read machine coded program.Therefore, adopt that the method for encrypted bits increases to crack cost little, prevent that the effect that cracks is general.
Summary of the invention
The objective of the invention is to address the above problem; a kind of guard method of the program information to program actuator is provided; it does not rely on the program information that prevents the client and is read out; increased to a great extent and cracked cost; also prolonged the required time of cracking greatly, can prevent effectively that client's program information from being cracked easily under the situation that breaks away from manufacturer and client control.
Technical scheme of the present invention is: a kind of guard method of the program information to program actuator; be used for breaking away from the program information of protecting the client to develop under the situation of manufacturer and client's control based on described program actuator at described program actuator; wherein, described guard method comprises:
(1) set up the compiling tag slot in described program actuator, the compiling of the corresponding different Compilation Methods of storage identifies in the described compiling tag slot, and guarantees that by technological means any client can't write other clients' compiling sign in the compiling tag slot;
(2) described compiling sign is determined a kind of correspondingly to it the Compilation Method of assembly routine to machine code program, and this Compilation Method need not disclose, can be only by manufacturer and corresponding client grasp;
(3) described program actuator reads, explains and carry out client's machine code program according to compiling sign, and described read or interpretation procedure and step (2) in Compilation Method mate.Similarly, this reads or interpretation procedure also need not disclose, and can only be grasped by manufacturer and corresponding client.
The guard method of above-mentioned program information to program actuator; wherein; in the step (1), described technological means is meant that described compiling tag slot employing disposable programmable ROM (read-only memory) realizes, by the compiling sign of manufacturer's default client's correspondence in described compiling tag slot.
The guard method of above-mentioned program information to program actuator, wherein, in the step (1), described technological means is meant, generates random number by the random number generator circuit in the program actuator and deposits the compiling tag slot in as the compiling sign.
The guard method of above-mentioned program information to program actuator; wherein; in the step (1); described technological means is meant; at first offer the compiling sign config. number of client's correspondence or generate compiling sign config. number by client oneself by manufacturer; write this compiling sign config. number to program actuator voluntarily by the client again, described compiling sign config. number generates the compiling sign and deposits described compiling tag slot in after program actuator is handled.The particular content of this processing capacity need not be openly can only be grasped by manufacturer, and the compiling sign config. number that offers each client can only be grasped by manufacturer and corresponding client.
The guard method of above-mentioned program information to program actuator; wherein; described program actuator is handled the difficulty that the combination that comprises the verification, computing or the verification that possess certain complexity and computing cracks with increase, and realizes that the main body of this processing can be a hardware circuit or embedded one section program or their combination that increases newly in program actuator.
The guard method of above-mentioned program information to program actuator; wherein; in the step (2); described Compilation Method is meant the method that is generated machine code program by the assembly routine of client development; if what the design of client's original program was adopted is high level language, then need converts thereof into assembly routine earlier and compile again and obtain machine code program.
The guard method of above-mentioned program information to program actuator; wherein; in the step (2); described Compilation Method both can be meant and be compiled into the particular machines code instruction collection corresponding with compiling sign; also can be meant the address decoding order of determining by compiling sign each bar machine code instruction that sorts, to obtain the machine code program corresponding with compiling sign.
The guard method of above-mentioned program information to program actuator; wherein, in the step (2), describedly both can finish to the compilation process of machine code program by the client by assembly routine; also can unite and finish, or finish separately by program actuator by client and program actuator.
The guard method of above-mentioned program information to program actuator; wherein; in the step (3); described program actuator identifies according to compiling or reads, explains and carry out client's machine code program by the compiling sign config. number that the reduction of compiling sign obtains, and realization can be a newly-increased circuit or one section embedded program by the main body that the compiling sign generates corresponding compiling sign config. number.
The guard method of above-mentioned program information to program actuator; wherein; in the step (3); the machine code instruction collected explanations or commentaries that described program actuator is determined according to the compiling sign is released and executive routine; or the address decoding order of determining according to the compiling sign reads and executive routine; the main body of carrying out this particular explanation or read functions can be a decoding scheme of determining and increasing newly, and described decoding scheme reveals different decoding functions according to different compiling label tables.The particular content of described decoding scheme is maintained secrecy by manufacturer.
The guard method of above-mentioned program information to program actuator, wherein, described Compilation Method and corresponding read, interpretation procedure both can be static, the behavior of compiling and read, explaining does not change over time; Also can be dynamic, compiling with the behavior of reading, explaining be different under different conditions.
The present invention contrasts prior art following beneficial effect: the present invention control the compiling of machine code program by compiling sign and read, interpretive mode.Even the cracker reads compiling sign and machine code program, owing to can't write other people compiling sign, therefore can't obtain to carry out the program actuator of this machine code program to program actuator, also can not realize imitated fast.Again since can't obtain with compile the corresponding compiling of sign or read, interpretation procedure, therefore also can't understand these machine code programs or machine code program is carried out dis-assembling, also can't obtain other people design philosophy and algorithm, also can not improve certainly this machine code program.
Description of drawings
Fig. 1 is the process flow diagram of the client development program of prior art.
Fig. 2 A is the block diagram of an embodiment of client development program of prior art.
Fig. 2 B is the block diagram of another embodiment of client development program of prior art.
Fig. 3 is the process flow diagram of an embodiment of client development program among the present invention.
Fig. 4 be embodiment illustrated in fig. 3 in the logical circuitry of a decoding scheme embodiment.
Fig. 5 is the process flow diagram of another embodiment of client development program among the present invention.
Fig. 6 be embodiment illustrated in fig. 5 in the logical circuitry of a decoding scheme embodiment.
Fig. 7 is the process flow diagram of an embodiment of client development program when the CLIENT PROGRAM memory bit is outside sheet among the present invention.
Fig. 8 is a circuit block diagram embodiment illustrated in fig. 7.
Fig. 9 is the process flow diagram of another embodiment of client development program when the CLIENT PROGRAM memory bit is in sheet among the present invention.
Figure 10 is a circuit block diagram embodiment illustrated in fig. 9.
Figure 11 is the process flow diagram that has adopted the another embodiment of client development program under on-the-flier compiler and the interpretation scheme among the present invention.
Figure 12 is a circuit block diagram embodiment illustrated in fig. 11.
Embodiment
The invention will be further described below in conjunction with drawings and Examples.
Fig. 3 shows a kind of simple scheme that has adopted program actuator of the present invention and the client flow process at an embodiment of the enterprising line program exploitation of this program actuator platform.This scheme is a newly-increased block decoding circuit on the basis of existing program actuator, and it will give program actuator after the machine code program decoding from the CLIENT PROGRAM storer again.Below in conjunction with Fig. 3 this flow process is described in detail.
Step S31: client A obtains program actuator from manufacturer or suppliers, and the compiling tag slot of this program actuator is not configured, and promptly compiling the tag slot is default value.Program actuator has increased a compiling identification hardware encrypted circuit newly, and the function of this hardware encryption circuit is only grasped by manufacturer, the input end of its output terminal link edition tag slot.Offered simultaneously the compiling sign config. number of client A correspondence by manufacturer, this compiling identifies config. number to have uniqueness and manufacturer is only arranged and client A knows.Client A writes this compiling sign config. number to program actuator after taking program actuator, this compiling sign config. number by described newly-increased compiling identification hardware encrypted circuit verification and computing after form the compiling sign and be stored to and compile in the tag slot.Wherein compiling sign config. number and compiling sign can be binary strings, and the arithmetic operation of described hardware encryption circuit is based on the bit arithmetic of binary string, can be the negate computing, with exclusive disjunction, rearrangement etc.Because the information of compiling tag slot can only be imported modification by described hardware encryption circuit, and the function of hardware encryption circuit is maintained secrecy, compiling sign config. number also only has manufacturer and client just to know, so even the cracker reads the compiling sign on the compiling tag slot, but owing to do not know the function of described hardware encryption circuit, the compiling sign config. number that just can't retrodict out corresponding also just can't write the compiling sign of wanting to the compiling tag slot of program actuator.For instance, the compiling sign config. number that manufacturer distributes to client A is " 1010 ", client A inputs to compiling identification hardware encrypted circuit with this identification number, the function of this hardware encryption circuit is output after repeating 6 times again after the binary string first and last position exchange that will import, so this hardware encryption circuit converts compiling sign " 001100110011001100110011 " to " 1010 " and deposits in the compiling tag slot of client A.
Should be understood that above-mentioned hardware encryption circuit is not necessary, carry out one section program by program actuator, the function of this program is identical with the function of above-mentioned hardware encryption circuit, also can play the effect that compiling sign config. number is converted to the compiling sign.Perhaps a hardware circuit and a suite are got up to realize same function.As long as can play the implementation method of same function, all should be included in protection scope of the present invention.
Step S32: the source program that client A develops on computers is compiled into general machine code program in computing machine.In general, the source program of client development is senior language program such as assembly routine or C programmer.Assembly routine is based on that the assembly instruction collection writes, and these assembly instructions concentrate and comprise instructions such as ADD commonly used, MOV, LOAD.But machine itself can't be discerned these assembly instructions, and machine can only be discerned the binary sequence of forming by 0 and 1, also is machine code instruction.So to a certain program actuator, have the corresponding relation of assembly instruction collection and machine code instruction collection,, assembly routine can be converted to the machine code program that machine can be discerned according to this corresponding relation.Such as, in 8086 chips, its binary command form is 16, an assembly statement " MOV AX, BX " is interpreted into the machine code instruction of " 1000101111000011 ".If source program is an assembly routine, then can assembly routine be compiled into machine code program on computers according to the corresponding relation between assembly instruction collection and the general-purpose machinery code instruction collection.If source program is C language or other high level language, then need earlier it to be compiled into assembly routine, again assembly routine is compiled into machine code program.This step belongs to prior art, is the same with the step S12 of Fig. 1.
Step S33: determine a kind of conversion regime according to the compiling of client A sign, the general-purpose machinery coded program that previous step is obtained in rapid with this conversion regime converts the custom-built machine coded program of client A to.The decoding function of decoding scheme inverse process each other among this conversion regime and the step S35.This conversion regime of step S33 is a kind of corresponding relation of the custom-built machine code instruction collection of general-purpose machinery code instruction collection among the step S31 and client A.Still the compiling sign " 001100110011001100110011 " with client A among the step S31 is an example, and this compiling identifier declaration is in step S35, and the interpretation procedure of program actuator is the front two negate of elder generation with the machine code instruction of client A.Significantly, it is contrary handles is front two negate with every instruction of original general-purpose machinery coded program, so corresponding conversion regime also is that front two negate with every instruction of original general-purpose machinery coded program is to generate the custom-built machine coded program of client A in this step.Be example still, behind step S 32, be interpreted into the machine code instruction of " 1000101111000011 ", after above-mentioned conversion regime conversion, generate the machine code instruction of " 0100101111000011 " with assembly statement " MOV AX, BX ".Here, conversion regime is that manufacturer offers client A and secret by manufacturer and client A, can be a kind of text description to this conversion regime, also can be the corresponding tables of two cover machine code instruction collection, also this conversion regime can be embodied as a program module.Client A can also can use the said procedure module to change automatically on computers according to the text description of above-mentioned conversion regime or the manual conversion of corresponding tables of two cover machine code instruction collection when doing conversion.Not should be understood that and should concrete conversion method be limited.
Step S34: the custom-built machine coded program that is converted to client A is written in the nonvolatile memory of program actuator, and this nonvolatile memory can design in the sheet of program actuator chip, also can be arranged on outer and this actuator electric connection of sheet.Generally speaking, this nonvolatile memory is ROM (read-only memory) (ROM).This step also is a prior art, is identical with step S13 among Fig. 1.Through above-mentioned conversion means,, also can't realize imitated fast or dis-assembling becomes assembly routine even the cracker has read the custom-built machine coded program of the client A that is stored among the ROM.Because being stored in the custom-built machine coded program of the client A among the ROM crosses through step S33 conversion process, machine code instruction collection in it and the ordinary procedure actuator is also incompatible, also promptly can not be discerned by common program actuator, so even the cracker removes the program actuator of the same model of buying on the market, owing to lacked the interpreter operation corresponding with conversion operations, also just can't move this custom-built machine coded program, so can not realize imitated fast.Again because conversion regime is that client A is exclusive, machine code instruction after the conversion and the corresponding relation between the assembly instruction have not been original disclosed general corresponding relations, the cracker can't convert this custom-built machine coded program to assembly routine by dis-assembling under the situation that can't know this conversion regime.So the cracker can't be known the design philosophy and the algorithm of program, program is improved also just do not known where to begin.
Step S35: the custom-built machine coded program of client A converts original general-purpose machinery coded program to through a decoding scheme.The transfer process of this step and step S33 is reciprocal.It all is the same giving the decoding scheme of all clients' program actuator, but this decoding scheme of different compilings sign may command shows different decoding functions.As mentioned above, the general-purpose machinery code instruction collection of custom-built machine coded program after step S33 conversion and program actuator nuclear can't be compatible, can not be discerned by it.Decoding scheme by the compiling of client A sign be configured to function for the custom-built machine coded program with client A convert to once more can with the general-purpose machinery coded program of the general-purpose machinery code instruction collection compatibility of program actuator nuclear.Still the compiling with above-mentioned client A is designated example, assembly statement " MOV AX; BX " becomes the binary machine code of " 0100101111000011 " after the compiling conversion, but this binary machine code can't be discerned by program actuator nuclear, decoding scheme identifies the front two negate that is configured to machine code instruction according to the compiling of client A, therefore through decoding scheme, machine code instruction is reduced into " 1000101111000011 ", and this just can be discerned by program actuator nuclear.Program actuator can carry out correct operation according to this machine code instruction: the value among the register BX is moved among the register AX.
Decoding scheme is realized its specific function with logic circuit device, is example with above-mentioned this function of front two negate with machine code instruction, the implementation of this decoding scheme frame of broken lines as shown in Figure 4.Even on the data line of preceding two positions (bit) of program actuator 42, reverser 43A, a 43B are set respectively at ROM 41, do not establish any device on remaining position datawire and directly connect ROM 41 and program actuator 42.Certainly, actual decoding scheme does not have only a kind of design, as long as reach required decoding function, all is included in the claim scope of the present invention.
Fig. 5 shows another program of having adopted program actuator of the present invention and the client flow process at another embodiment of the enterprising line program exploitation of this program actuator platform.Below in conjunction with Fig. 5 this flow process is described in detail.
Step S51: this step is identical with step S31 embodiment illustrated in fig. 3.Just no longer be repeated in this description at this.For instance, the compiling sign config. number that manufacturer distributes to client B is " 1101 ", client B should compile the sign config. number and input to hardware circuit, and this hardware circuit converts compiling sign " 110111011101110111011101 " to " 1101 " and deposits in the compiling tag slot.
Step S52: the storehouse of designing corresponding relation between a storage assembly instruction collection and the machine code instruction collection, contain many tables in this storehouse, wherein every corresponding client's of table compiling sign is stored the corresponding relation between assembly instruction collection and the peculiar machine code instruction collection of this client.For instance, client B has the table of corresponding relation between an assembly instruction collection and the machine code instruction collection, the compiling sign " 110111011101110111011101 " of client B is meant two exchanges in end with machine code instruction, therefore assembly statement " MOV CL, 55H " is interpreted into the machine code instruction of " 1011000101010110 " in this table in table.
Step S53: during the compiling source program, identify pairing compile mode with the compiling that compiles the tag slot source program is compiled into machine code program.With client B is example, source program is compiled on the custom-built machine code instruction collection of client B.In compilation process, find that table of client B correspondence, assembly statement " MOV CL, 55H " is become the machine code instruction of " 1011000101010110 " by direct compilation.In fact finished the process of machine code program conversion this moment, it and difference embodiment illustrated in fig. 3 are, the embodiment of Fig. 3 can be compiled into " MOV CL; 55H " earlier the machine code instruction of general " 1011000101010101 ", and the mode according to two exchanges in end converts " 1011000101010110 " to then; And present embodiment has changed the mode of compiling, directly the conversion regime with two exchanges in end is embedded in the compilation process, also promptly using compiler that " MOV CL, 55H " this assembly statement is compiled the machine code instruction that the back has just directly formed " 1011000101010110 ".
Step S54: will compile in the nonvolatile memory of custom-built machine coded program write-in program actuator of the client B that obtains.
Step S55: the custom-built machine coded program of client B is explained execution in program actuator.Be that with difference embodiment illustrated in fig. 3 program actuator in the present embodiment has a plurality of machine code instruction collection, wherein each machine code instruction set pair is answered a compiling sign.Program actuator is chosen corresponding machine code instruction collection and is carried out according to the compiling sign.With client B is example, and program actuator is according to the compiling of client B sign, chooses behind the corresponding machine code instruction collection the directly custom-built machine coded program of operation client B.
Should be understood that step S55 also can adopt the step S35 of Fig. 3 embodiment to realize, promptly increase a decoding scheme two exchanges in end of machine code instruction.Decoding scheme is realized its specific function with logic circuit device, and exchanging this function with above-mentioned two at end with machine code instruction is example, the implementation of this decoding scheme frame of broken lines as shown in Figure 6.At ROM 61 module 62 that two signals are exchanged is set on two (bit) data lines in the end of program actuator 63 even, does not establish any device on remaining position datawire and directly connect ROM 61 and program actuator 63.Wherein position datawire 64 is connected on the input port A of module 62, and position datawire 65 is connected on the input port B of module 62, after module 62 is handled, and the signal that delivery outlet C output input port B receives, and the signal that delivery outlet D output input port A receives.Certainly, actual decoding scheme does not have only a kind of design, as long as reach required decoding function, all is included in the claim scope of the present invention.
Fig. 7 shows another program of having adopted program actuator of the present invention and the client flow process at another embodiment of the enterprising line program exploitation of this program actuator platform.This scheme has increased a compiling identification hardware encrypted circuit, a compiling identification hardware decrypt circuit and a configurable decoding scheme on the basis of existing program actuator, this decoding scheme will be given program actuator after the machine code program decoding from the outer client's program storage of sheet again.Below in conjunction with Fig. 7 this flow process is described in detail.
Step S71: client C obtains program actuator from manufacturer or suppliers, and the compiling tag slot of this program actuator is not configured, and promptly compiling the tag slot is default value.Manufacturer provides the corresponding relation of compiling sign config. number and Compilation Method simultaneously, promptly how to obtain corresponding Compilation Method by compiling sign config. number, and how to release corresponding compiling sign config. number by the Compilation Method of client's design.In this example, manufacturer offers the compiling sign config. number of client C and the corresponding relation of Compilation Method is: by general, disclosed Compilation Method client's source program is compiled into general machine code program earlier, the conversion method of determining by compiling sign config. number is changed each bar machine code instruction one by one again, to obtain and to compile the corresponding custom-built machine coded program of sign config. number; It is wide that all instructions of program actuator in this example are 8Bit, all can do to give program actuator nuclear after the rearrangement according to compiling sign config. number by a newly-increased configurable decoding scheme from the 8Bit of every instruction of the outer client's program storage of sheet and carry out; Compiling sign config. number is 24Bit altogether, is divided into 8 groups, and every group of 3Bit determines a position; The client can design a kind of sort method voluntarily, 8Bit to every instruction of general-purpose machinery coded program according to said method resequences, can get the custom-built machine coded program of oneself, and then generate the compiling sign config. number that is complementary of sort method therewith, it can make described configurable decoding scheme to doing opposite processing from every instruction of the outer client's program storage of sheet, to restore original general-purpose machinery code instruction, give program actuator nuclear again.
Step S72: the client designs a kind of Compilation Method voluntarily, and the corresponding relation of the compiling that provides according to manufacturer sign config. number and Compilation Method, release corresponding compiling sign config. number, again this config. number loading routine actuator is generated the compiling sign, finish configuration program actuator.In this example, the Compilation Method of client C design be with the 8Bit of every instruction of general-purpose machinery coded program (use respectively from high to low<7,<6 〉,<5 〉,<4 〉,<3 〉,<2 〉,<1 〉,<0〉mark) according to<3 〉,<5 〉,<0 〉,<7 〉,<2 〉,<6〉order,<1 〉,<4〉rearranges to obtain the custom-built machine coded program.In order to make described configurable decoding scheme from the custom-built machine coded program, restore the general-purpose machinery coded program, the compiling sign config. number that provides according to step S71 manufacturer and the corresponding relation of Compilation Method, can release corresponding compiling sign config. number and can be expressed as " 42607315 " with 8 systems, the 7th to the 0th of the instruction that its representation program actuator nuclear obtains comes from the 4th, the 2nd, the 6th, the 0th, the 7th, the 3rd, the 1st, the 5th of instruction of custom-built machine coded program respectively.Apparently, the client tackles the Compilation Method of oneself and compiles the sign config. number and maintains secrecy.
Client C generates this compiling sign config. number " 42607315 " (8 system) write-in program actuator chip the compiling sign and deposits described compiling tag slot in after a newly-increased compiling identification hardware encrypted circuit is handled in the program actuator sheet then.The concrete function of this compiling identification hardware encrypted circuit is maintained secrecy by manufacturer.In this example, the concrete function of this hardware encryption circuit is to exchange with the preceding 12Bit negate of the compiling sign config. number of client input and with last 12Bit.Therefore the compiling that writes the client C of compiling tag slot at last is designated " 73153517 " (8 system).Because the information of compiling tag slot can only be imported modification by described newly-increased compiling identification hardware encrypted circuit, and the function of this encrypted circuit is maintained secrecy, so even the cracker reads the compiling sign in the compiling tag slot, but, just can't release corresponding compiling sign config. number owing to do not know the concrete function of described hardware encryption circuit; And client C also maintains secrecy to oneself compiling sign config. number and Compilation Method, so the cracker can't write the compiling sign of client C to the compiling tag slot of program actuator.The cracker also may attempt writing different compiling sign config. number to program actuator, and notes the compiling sign that is stored in the compiling tag slot of generation; Obtain a large amount of such " compiling sign config. number--compiling sign " and to after, the concrete function of guess compiling identification hardware encrypted circuit in view of the above.For increasing the difficulty that this cracks work, can take following measure: 1. compile the identification hardware encrypted circuit and should possess certain complexity; 2. compiling the tag slot can adopt disposable programmable ROM (read-only memory) (OTP ROM) to realize; 3. compile the tag slot and forbid reading, can be by in the compiling sign, setting up check bit, it is correct to confirm by program actuator output compiling sign check results whether the compiling sign writes.
Step S73: the client finishes the source program design, and by general Compilation Method it is compiled into general machine code program.This step belongs to prior art, is the same with the step S12 of Fig. 1.
Step S74: the client is according to self-designed Compilation Method in step S72, the machine code instruction of the general-purpose machinery coded program that obtains among the step S73 changed one by one, to obtain and oneself the corresponding custom-built machine coded program of compiling sign config. number.In this example, concrete conversion method be with the 8Bit of every instruction of general-purpose machinery coded program (use respectively from high to low<7,<6 〉,<5 〉,<4 〉,<3 〉,<2 〉,<1 〉,<0〉mark) according to<3 〉,<5 〉,<0 〉,<7 〉,<2 〉,<6〉order,<1 〉,<4〉rearranges to obtain the custom-built machine coded program.
Certainly, step S73 and S74 also can merge execution, promptly according to the corresponding relation of assembly instruction collection to the corresponding relation of general-purpose machinery code instruction collection and general-purpose machinery code instruction collection to client's custom-built machine code instruction collection, release the corresponding relation of assembly instruction collection, directly client's source program is compiled into client's custom-built machine coded program then to client's custom-built machine code instruction collection.So, as described in claim 6, also can understand this process like this: the compiling sign config. number " 42607315 " of client C has been determined the proprietary machine code instruction collection of a cover client C, and directly the source program with client C is compiled into the custom-built machine coded program that can obtain client C on this machine code instruction collection.
Step S75: client's custom-built machine coded program is write in the CLIENT PROGRAM storer.In this example, therefore the CLIENT PROGRAM storer can write by general cd-rom recorder outside sheet.This step also is a prior art, is identical with step S13 among Fig. 1.
After finishing these steps, when powering on working procedure to program actuator, described program actuator can restore compiling sign config. number according to the compiling sign earlier at every turn.In this example, the main body that realizes being generated by the compiling sign corresponding compiling sign config. number is a newly-increased compiling identification hardware decrypt circuit, and its concrete function is the back 12Bit negate of 24Bit compiling sign that will the compiling tag slot and exchanges with preceding 12Bit.Certainly this function manufacturer also maintains secrecy.The compiling sign config. number that restores is delivered to configurable decoding scheme, and described configurable decoding scheme is all the same in every program actuator chip, but it can show different decoding functions according to different compiling sign config. number.In this example, described configurable decoding scheme selects 1 MUX to form by 88, and they will give program actuator nuclear after the 8Bit rearrangement from every instruction of CLIENT PROGRAM storer again.Described configurable decoding scheme is according to the compiling of client C sign config. number " 42607315 " (8 system) specific decoding function of showing is to give program actuator nuclear again with coming the 7th to the 0th respectively from the 4th, the 2nd, the 6th, the 0th, the 7th, the 3rd, the 1st, the 5th of the instruction of CLIENT PROGRAM storer.The conversion process of integrating step S74, configurable as can be known decoding scheme just in time restores the general-purpose machinery code instruction.If described configurable decoding scheme and program actuator nuclear are merged to get up to see, this merging body shows as the configurable program actuator nuclear of machine code instruction collection, and concrete configuration result is by the decision of compiling sign.As described in claim 9, can regard this merging body as and release and executive routine according to the definite machine code instruction collected explanations or commentaries of compiling sign.And the machine code instruction collection that the existing program actuator chip that does not adopt this patent all has only a cover to determine.
Because the conversion of step S74 has been arranged,, also can't realize imitated fast or dis-assembling becomes assembly routine even the cracker has read the custom-built machine coded program of the client C in the CLIENT PROGRAM storer.Because the custom-built machine coded program of client C has been to handle through step S74, it and general machine code instruction collection and incompatible, also promptly can not be discerned by common program actuator, so even the cracker removes the program actuator of the same model of buying on the market, owing to lacked the decoded operation corresponding with the S74 conversion operations, also just can't move this machine code program, so can not realize imitated fast.Maintain secrecy because of the conversion method of step S74 again, client's custom-built machine coded program after the conversion and the corresponding relation between the assembly routine have not been original general, disclosed corresponding relations, so the cracker under the situation that can't know this conversion method, can't become assembly routine with client's custom-built machine coded program dis-assembling.So the cracker can't be known the design philosophy and the algorithm of program, program is improved also just do not known where to begin.
Fig. 8 is the block diagram of the program actuator in this example, is configurable decoding scheme 83 in the frame of broken lines wherein.Compiling identification hardware encrypted circuit 84 generates the compiling sign after receiving compiling sign config. number, writes compiling tag slot 85; Compiling sign then passes to compiling identification hardware decrypt circuit 86, restores compiling sign config. number, is used to dispose configurable decoding scheme 83.Configurable decoding scheme selects 1 MUX to form by 88.Compiling sign config. number is 24Bit altogether, is divided into 8 groups, and every group of 3Bit controls a MUX, and they will export to program actuator nuclear 82 after the 8Bit rearrangement from every instruction of CLIENT PROGRAM storer 81.Certainly, actual configurable decoding scheme does not have only a kind of design, as long as reach required decoding function, all is included in the claim scope of the present invention.
Fig. 9 shows another program of having adopted program actuator of the present invention and the client flow process at another embodiment of the enterprising line program exploitation of this program actuator platform.Below in conjunction with Fig. 9 this flow process is described in detail.
Step S91: the client obtains program actuator from manufacturer or suppliers, and the compiling tag slot of this program actuator is not configured, and promptly compiling the tag slot is default value.The client selects a compiling sign config. number at random then, and should compile sign config. number loading routine actuator to generate the compiling sign, finishes the configuration to program actuator.Such as, requiring compiling sign config. number in this example is 30Bit, the compiling sign config. number that client D selects can be expressed as with 16 systems " 3A73 FF5A ".Client D is with this compiling sign config. number " 3A73 FF5A " write-in program actuator chip, generate the compiling sign and deposit described compiling tag slot in after a newly-increased compiling identification hardware encrypted circuit is handled in the program actuator sheet.The concrete function of this compiling identification hardware encrypted circuit is maintained secrecy by manufacturer.In this example, the concrete function of this hardware encryption circuit is that the compiling sign config. number that the client imports is divided into 3 10Bit and addition, gives up carry then with 10Bit additive operation negate as a result, generates the compiling sign.Config. number with client D " 3A73 FF5A " be example, be divided into 3 10Bit earlier: " 3A7 ", " OFF ", " 35A ", after the addition " 800 ", give up after the carry last 10Bit for " 000 ", negate must compile and be designated " 3FF ".Therefore the compiling that writes the client D of compiling tag slot at last is designated " 3FF ".Because the information of compiling tag slot can only be imported modification by described newly-increased compiling identification hardware encrypted circuit, and the function of this encrypted circuit is maintained secrecy, so even the cracker reads the compiling sign in the compiling tag slot, but, just can't release corresponding compiling sign config. number owing to do not know the concrete function of described hardware encryption circuit; And client D also maintains secrecy to the compiling sign config. number of oneself, so the cracker can't write the compiling sign of client D to the compiling tag slot of program actuator.
Step S92: this step is identical with step S73 embodiment illustrated in fig. 7, and promptly the client finishes the source program design, and by general Compilation Method it is compiled into general machine code program.
Step S93: with the general-purpose machinery coded program loading routine actuator of step S92 gained, described general-purpose machinery coded program is handled the custom-built machine coded program that the back generates the client, the CLIENT PROGRAM storer in the sheet of restoring by one in the sheet newly-increased configurable decoding scheme.Finish by the general-purpose machinery coded program to the conversion work of custom-built machine coded program be configurable decoding scheme in the sheet, therefore this can be regarded as the program actuator chip and also partly participate in compiling work from assembly routine to client's custom-built machine coded program.
Described configurable decoding scheme is between interior CLIENT PROGRAM storer of sheet and the program actuator nuclear, and its concrete processing capacity is determined by the compiling sign configuration of compiling tag slot.When program actuator powered on operation, this decoding scheme was responsible for that the custom-built machine coded program in the CLIENT PROGRAM storer in the sheet is reduced to the general-purpose machinery coded program and is given the execution of program actuator nuclear again.In this example, described configurable decoding scheme is made up of 10 XOR gate, and they are with the address bus of program actuator instruction addressing address bus of authorizing out and the compiling sign step-by-step XOR rear drive CLIENT PROGRAM storer that compiles the tag slot.The CLIENT PROGRAM storer is 1K byte (BYTE) capacity in the sheet, instruction of every byte (BYTE) storage, and the corresponding address bus also is that 10Bit is wide.So this configurable decoding scheme is through the compiling of client D sign " 3FF " after the configuration, the decoding function that shows is the address bus that drives the CLIENT PROGRAM storer after the instruction addressing address bus step-by-step negate that program actuator is authorized out again.Certainly, the client during to program actuator input general-purpose machinery coded program, the address bus of CLIENT PROGRAM storer is also crossed by identical rule treatments by configurable decoding scheme, so what obtain during the program actuator operation will be correct general-purpose machinery coded program.Can allow configurable decoding scheme also work during read routine from the program actuator chip the client, whether the client can obtain the general-purpose machinery coded program of original input like this, write correct with proving program.Certain danger---the cracker also can carry out the fetch program from the program actuator chip, and he will directly obtain the general-purpose machinery coded program of client D if so certainly design has.Can consider to take following measure to stop the generation of this situation, simultaneously allow client D to verify whether its program writes correct again: the sign of input compiling earlier config. number when 1. each CLIENT PROGRAM storer in the program actuator sheet is read program, through with the compiling tag slot in compiling identify and just allow to read after checking coupling; 2. forbid the operation of any read routine, whether by adding check bit at program termination, it is correct to come proving program to write by program actuator execution verification.
As mentioned above, when the general-purpose machinery coded program is transfused to program actuator, every instruction is all directed address newly, the CLIENT PROGRAM storer has formed the custom-built machine coded program in sheet then.This conversion operations is specifically carried out by configurable decoding scheme.Even therefore the cracker has read the custom-built machine coded program of the client D in the CLIENT PROGRAM storer, under the situation of the concrete function of the configurable decoding scheme that can't know client D, also can't obtain the general-purpose machinery coded program of correct order or the assembly routine that dis-assembling goes out correct order.The cracker also can remove the program actuator of the same model of buying on the market and import the custom-built machine coded program of client D, even there is the compiling of client D to identify the auxiliary of " 3FF ", what finally write the CLIENT PROGRAM storer still can be a mixed and disorderly program.It is not enough having to the custom-built machine coded program of client D, because it can't not write with not being changed CLIENT PROGRAM storer in the sheet, and comprises that client D also can't understand it; The general-purpose machinery coded program that obtains client D is only significant.
The cracker will obtain the general-purpose machinery coded program from the custom-built machine coded program of client D, must analyze the concrete function that configurable decoding scheme shows after the compiling sign configuration of client D earlier.Import some particular machines coded programs such as the program actuator that the cracker can identify to the compiling with client D, contrast with the machine code program that finally in sheet, produces on the CLIENT PROGRAM storer then, to guess the concrete function of configurable decoding scheme.In order to increase the difficulty that this cracks work, can consider to adopt following measure: 1. the CLIENT PROGRAM storer adopts disposable programmable ROM (read-only memory) (OTP ROM) to realize in the sheet again; 2. the sign of input compiling earlier config. number when the program actuator write-in program at every turn, through with the compiling tag slot in compiling identify and just allow to write after checking coupling; 3. configurable decoding scheme should possess certain complexity, and should be as much as possible with program actuator nuclear power road Mixed Design together.
Figure 10 is the block diagram of the program actuator in this example, is configurable decoding scheme 103 in the frame of broken lines wherein.Compiling identification hardware encrypted circuit 104 generates the compiling sign after receiving compiling sign config. number, writes compiling tag slot 105; Compiling sign then passes to configurable decoding scheme 103.Configurable decoding scheme is made up of 10 XOR gate, and they are with program actuator instruction addressing address bus of authorizing out and the address bus that compiles sign step-by-step XOR rear drive CLIENT PROGRAM storer.
Among above-mentioned two embodiment, the mode of compiling and read, explaining all is static, promptly identical compiling and read, interpretation procedure is applicable to whole compilation process.In order to increase the cost that cracks, improve the complexity that cracks, the mode that also can compile and read, explain is set to dynamically.What is called dynamically is meant: a condition can be set, under different situations, carry out different compilings and read, interpreter operation.Illustrated for an embodiment again.Figure 11 shows another program of having adopted program actuator of the present invention and the client flow process at another embodiment of the enterprising line program exploitation of this program actuator platform.Below in conjunction with Figure 11 this flow process is described in detail.
Step S111: the client obtains program actuator from manufacturer or suppliers, and the compiling tag slot of this program actuator is not configured, and promptly compiling the tag slot is default value.
Step S112: the client finishes the source program design, and by general Compilation Method it is compiled into general machine code program.
Step S113: with the general-purpose machinery coded program loading routine actuator of the rapid gained of previous step, the interior newly-increased random number generator circuit of described program actuator will produce a random number earlier and deposit the compiling tag slot in as compiling to identify during input, and this compiling sign also is used to dispose the configurable decoding scheme that another piece in the sheet increases newly simultaneously; The general-purpose machinery coded program of input is handled the custom-built machine coded program that the back generates the client by this configurable decoding scheme, and deposits the CLIENT PROGRAM storer in the sheet in.
Compare with embodiment illustrated in fig. 9, present embodiment has substituted the operation of being imported compiling sign config. number by the client with a randomizer, make that client's flow process of development sequence on program actuator is in full accord in the flow process of present embodiment and the prior art shown in Figure 1 from client's viewpoint of measures.But final result is different, and what deposit the interior CLIENT PROGRAM storer of program actuator sheet in this example at last in is not the general-purpose machinery coded program that the client imports, but has passed through the custom-built machine coded program of conversion.Comprise that the client also can't understand this custom-built machine coded program, but it can correctly be reduced and carry out by program actuator.The operation that writing compiling sign config. number, being transformed into the custom-built machine coded program by the general-purpose machinery coded program among preceding two embodiment is all finished by the newly-increased circuit in the program actuator sheet in this example, and need not the client intervene.
How the program actuator of specifically telling about below in this example operates.Such as, client E is when program actuator input general-purpose machinery coded program: 1. a newly-increased random number generator circuit produces a 48Bit random number earlier in the sheet, available 16 systems are expressed as " E80B 44C7 9A15 ", and this random number is used as the compiling sign and deposits the compiling tag slot in; 2. the newly-increased configurable decoding scheme of another piece in the sheet is through the compiling sign of compiling tag slot " E80B 44C7 9A15 " after the configuration, the concrete function that shows is: the address is belonged to 000 to 3FF (16 system) 1K bar machine code instruction, carry out the front two negate of every instruction; Ensuing address is belonged to 400 to 7FF (16 system) 1K bar machine code instruction, carry out two exchanges in end of every instruction; Repeat said process (alleged on-the-flier compiler method that Here it is) then; 3. the general-purpose machinery coded program of client E input generates the custom-built machine coded program after described configurable decoding scheme is handled, and deposits the CLIENT PROGRAM storer in the sheet in.After finishing these steps, when later on each program actuator powers on operation, its configurable decoding scheme can be read the compiling sign from the compiling tag slot earlier " E80B 44C7 9A15 " in order to dispose self, then to doing identical processing: the address is belonged to first 1K from the instruction of CLIENT PROGRAM storer, the 3rd 1K, the front two negate of every instruction is carried out in the instruction of the 5th 1K......, the address is belonged to second 1K, the 4th 1K, two exchanges in end of every instruction are carried out in the instruction of the 6th 1K......, and the instruction after the processing is given program actuator nuclear again and carried out.As seen, when program actuator powered on operation, its configurable decoding scheme had just in time restored the general-purpose machinery coded program of original client E input.
In this example, the program actuator that has been written into program forbids that program reads.Because the compiling of program actuator sign is generated at random by program actuator oneself in this example,, can only forbid program to read so it can't screen legal client E and illegal cracker.In order to allow client E can proving program whether correctly write, can add check bit at program termination, whether carrying out verification by program actuator, to come proving program to write correct.
In this example, manufacturer is still secret to the concrete function of configurable decoding scheme.Even, also can't therefrom restore the general-purpose machinery coded program so the cracker has read the custom-built machine coded program of client E.If cracker's attempt writes the concrete function of the program of some particular design with conjecture configurable decoding scheme wherein to the program actuator of client E, also be futile, because the randomizer when writing in the program actuator sheet will produce new compiling and identify and override original compiling and identify, thereby also changed the concrete function of configurable decoding scheme.Even write same machine code program to program actuator, the compiling sign of at every turn writing fashionable randomizer generation also is different.The compiling sign that randomizer generates in this example has 48Bit, can provide 262144G (1G ≈ 1,000,000,000) to plant combination.The identical probability of compiling sign that this means twice generation of randomizer has only 1/262144G.If ceaselessly do this trial, once be example to attempt for 1 second, the times of this probability being brought up to 1 ‰ needs are about 8925.If so there is the people to want to allow randomizer generate certain specific compiling sign, he needs patient especially.In this sense, can think that any client can't write other clients' compiling sign in the compiling tag slot.
Figure 12 is the block diagram of the program actuator in this example, is configurable decoding scheme 123 in the frame of broken lines wherein, and it selects 1 MUX 123C to form by two submodule 123A, 123B and one 2.When client E write the general-purpose machinery coded program, randomizer 124 generated a random number " E80B 44C7 9A15 " as the compiling sign, write compiling tag slot 125; Compiling sign then passes to configurable decoding scheme 123.Under this compiling sign configuration, the function of 123A is the front two negate to every instruction, the function of 123B is not two exchanges to every instruction, the function of 123C exports to 122 for selection 123A's when the program actuator nuclear 122 instruction addressing addresses of sending belong to first 1K, the 3rd 1K, the 5th 1K......, and selection 123B's exports to 122 when the program actuator nuclear 122 instruction addressing addresses of sending belong to second 1K, the 4th 1K, the 6th 1K.......
Should be understood that in the present embodiment that substituting the method for importing compiling sign config. number by the client with a randomizer also can be used for generating in the aforementioned embodiment the compiling sign, the method that generates the compiling sign in the same previous embodiment also can be used for present embodiment.In addition, as described in claim 2, compiling sign among these embodiment can also adopt another kind of mode to realize, be that manufacturer just writes corresponding compiling sign according to customer information in advance before program actuator dispatches from the factory in the compiling tag slot, this compiling tag slot adopts disposable programmable ROM (read-only memory) (OTP ROM) to realize.That is to say that in a single day program actuator dispatches from the factory, the compiling tag slot of its inside just can't be erasable.
Should be understood that of the present invention focusing on also can't directly use or dis-assembling even make the cracker obtain these machine code programs by obtain to be stored in the machine code program on the CLIENT PROGRAM storer with the compiling of the exclusive compile mode of client.The above-mentioned concrete instruction of mentioning, concrete compiling and interpreting mode, the specific implementation of configurable decoding scheme etc. are only as example, are not used for limiting the present invention.
The foregoing description provides to those of ordinary skills and realizes or use of the present invention; those of ordinary skills can be under the situation that does not break away from invention thought of the present invention; the foregoing description is made various modifications or variation; thereby protection scope of the present invention do not limit by the foregoing description, and should be the maximum magnitude that meets the inventive features that claims mention.
Claims (10)
1 one kinds of guard methods to the program information of program actuator are used for breaking away from the program information of protecting the client to develop based on described program actuator under the situation of manufacturer and client's control at described program actuator, it is characterized in that described guard method comprises:
(1) set up the compiling tag slot in described program actuator, the compiling of the corresponding different Compilation Methods of storage identifies in the described compiling tag slot, and guarantees that by technological means any client can't write other clients' compiling sign in the compiling tag slot;
(2) described compiling sign is determined a kind of corresponding to it the Compilation Method of assembly routine to machine code program;
(3) described program actuator reads, explains and carry out client's machine code program according to compiling sign, and described read or interpretation procedure and step (2) in Compilation Method mate.
The guard method of 2 program informations to program actuator according to claim 1; it is characterized in that; in the step (1); described technological means is meant that described compiling tag slot employing disposable programmable ROM (read-only memory) realizes, by the compiling sign of manufacturer's default client's correspondence in described compiling tag slot.
The guard method of 3 program informations to program actuator according to claim 1; it is characterized in that; in the step (1), described technological means is meant, generates random number by the random number generator circuit in the program actuator and deposits the compiling tag slot in as the compiling sign.
The guard method of 4 program informations to program actuator according to claim 1; it is characterized in that; in the step (1); described technological means is meant; at first offer the compiling sign config. number of client's correspondence or generate compiling sign config. number by client oneself by manufacturer; write this compiling sign config. number to program actuator voluntarily by the client again, described compiling sign config. number generates the compiling sign and deposits described compiling tag slot in after program actuator is handled.
The guard method of 5 program informations to program actuator according to claim 4; it is characterized in that; described program actuator is handled the difficulty that the combination that comprises the verification, computing or the verification that possess certain complexity and computing cracks with increase, and realizes that the main body of this processing can be a hardware circuit or embedded one section program or their combination that increases newly in program actuator.
The guard method of 6 program informations to program actuator according to claim 1; it is characterized in that; in the step (2); described Compilation Method both can be meant and be compiled into the particular machines code instruction collection corresponding with compiling sign; also can be meant the address decoding order of determining by compiling sign each bar machine code instruction that sorts, to obtain the machine code program corresponding with compiling sign.
The guard method of 7 program informations to program actuator according to claim 1; it is characterized in that; in the step (2); describedly both can finish to the compilation process of machine code program by the client by assembly routine; also can unite and finish, or finish separately by program actuator by client and program actuator.
The guard method of 8 program informations to program actuator according to claim 1; it is characterized in that; in the step (3); described program actuator identifies according to compiling or reads, explains and carry out client's machine code program by the compiling sign config. number that the reduction of compiling sign obtains, and realization can be a newly-increased circuit or one section embedded program by the main body that the compiling sign generates corresponding compiling sign config. number.
The guard method of 9 program informations to program actuator according to claim 1; it is characterized in that; in the step (3); the machine code instruction collected explanations or commentaries that described program actuator is determined according to the compiling sign is released and executive routine; or the address decoding order of determining according to the compiling sign reads and executive routine; the main body of carrying out this particular explanation or read functions can be a newly-increased decoding scheme, and described decoding scheme reveals different decoding functions according to different compiling label tables.
The guard method of 10 program informations to program actuator according to claim 1 is characterized in that, described Compilation Method and corresponding read, interpretation procedure both can be static, the behavior of compiling and read, explaining does not change over time; Also can be dynamic, compiling with the behavior of reading, explaining be different under different conditions.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2006101628761A CN100446023C (en) | 2006-04-26 | 2006-11-27 | Method for protecting program information of program actuator |
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200610026054 CN1862557A (en) | 2006-04-26 | 2006-04-26 | Method for protecting program information of program executive device |
| CN200610026054.0 | 2006-04-26 | ||
| CNB2006101628761A CN100446023C (en) | 2006-04-26 | 2006-11-27 | Method for protecting program information of program actuator |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1975753A CN1975753A (en) | 2007-06-06 |
| CN100446023C true CN100446023C (en) | 2008-12-24 |
Family
ID=38125806
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2006101628761A Expired - Fee Related CN100446023C (en) | 2006-04-26 | 2006-11-27 | Method for protecting program information of program actuator |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100446023C (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105335660B (en) * | 2014-07-30 | 2019-02-19 | 无锡华润矽科微电子有限公司 | The method for realizing the encryption of MCU circuit based on non-volatility memorizer |
| CN106325967B (en) | 2015-06-30 | 2019-10-25 | 华为技术有限公司 | A kind of hardware-accelerated method, compiler and equipment |
| CN116561715A (en) * | 2019-12-20 | 2023-08-08 | 无锡矽杰微电子有限公司 | MCU program encryption and decryption method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6463538B1 (en) * | 1998-12-30 | 2002-10-08 | Rainbow Technologies, Inc. | Method of software protection using a random code generator |
| CN1605968A (en) * | 2004-11-15 | 2005-04-13 | 南京大学 | Software security ensuring method based on program internal behavior monitoring |
| CN1749915A (en) * | 2005-10-19 | 2006-03-22 | 北京飞天诚信科技有限公司 | Software copy right protecting method for extracting partial code to enciphed device from software |
-
2006
- 2006-11-27 CN CNB2006101628761A patent/CN100446023C/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6463538B1 (en) * | 1998-12-30 | 2002-10-08 | Rainbow Technologies, Inc. | Method of software protection using a random code generator |
| CN1605968A (en) * | 2004-11-15 | 2005-04-13 | 南京大学 | Software security ensuring method based on program internal behavior monitoring |
| CN1749915A (en) * | 2005-10-19 | 2006-03-22 | 北京飞天诚信科技有限公司 | Software copy right protecting method for extracting partial code to enciphed device from software |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1975753A (en) | 2007-06-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102047220B (en) | System and method for generating white-box implementations of software applications | |
| US9940445B2 (en) | Securing microprocessors against information leakage and physical tampering | |
| TWI460604B (en) | Secure microcontroller,hardware cipher,and method for securing content within a microcontroller | |
| CN104380244B (en) | Store for calculate function look-up table computing device | |
| US9053300B2 (en) | Device and a method for generating software code | |
| US20030126451A1 (en) | Data processing | |
| CN102436423B (en) | Controller and method for protecting NorFlash core data outside universal sheet | |
| DE102009041176B4 (en) | A compiler system and method for compiling a source code into an encrypted machine language code | |
| CN102123030B (en) | Encoding/decoding circuit | |
| CN112100624B (en) | Firmware protection method and device and terminal equipment | |
| TW202028989A (en) | Configurable security memory region | |
| Manikyam | Program protection using software based hardware abstraction | |
| CN100446023C (en) | Method for protecting program information of program actuator | |
| CN109977702A (en) | A kind of FPGA device encrypted authentication system and method based on DS2432 chip | |
| KR20200136142A (en) | Method of encoding and decoding memory data for software security, readable medium and apparatus for performing the method | |
| CN102289625A (en) | Memory chip with encryption function and piracy prevention method | |
| CN107220528A (en) | The protection of java applet and operation method, device and terminal | |
| Kuang et al. | Exploiting dynamic scheduling for VM-based code obfuscation | |
| JP2005216027A (en) | Encryption device, encryption system therewith, decryption device and semiconductor system therewith | |
| US20200272475A1 (en) | Method for executing a machine code of a secure function | |
| CN115510402A (en) | License control method and system based on encryption and code confusion | |
| KR20040008822A (en) | Control system with protective ability for external program code | |
| CN109558341A (en) | Calculator memory data guard method and computer | |
| CN103336919A (en) | System and method for achieving instrument encryption verification control function | |
| Yasin et al. | Dynamic multi levels Java code obfuscation technique (DMLJCOT) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C41 | Transfer of patent application or patent right or utility model | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20080523 Address after: 502, room 6, Lane 289 Ouyang Road, Shanghai, zip code: 200081 Applicant after: Ho Po Co-applicant after: Qian Hailei Address before: 502, room 6, Lane 289 Ouyang Road, Shanghai, zip code: 200081 Applicant before: Ho Po Co-applicant before: Wang Tao |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C57 | Notification of unclear or unknown address | ||
| DD01 | Delivery of document by public notice |
Addressee: Chen Liang Document name: Notification of Approving Refund |
|
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20081224 Termination date: 20151127 |
|
| EXPY | Termination of patent right or utility model |