Summary of the invention
In view of this, the present invention proposes a kind of log-on message document generating method of application software, to realize the sub-module mandate of application software.
Another object of the present invention is the use authority method that proposes a kind of application software, to realize the sub-module mandate of application software.
The present invention also proposes a kind of log-on message file creating apparatus of application software, to realize the sub-module mandate of application software.
For achieving the above object, the technical scheme of the embodiment of the invention is achieved in that
A kind of log-on message document generating method of application software, carry out following steps in application software provider side:
Obtain MAC Address of Network Card, hard disk sequence number and the CPU sequence number of subscriber computer, generate machine code;
Title according to each functional module in said machine code, the application software; Generation and each functional module be authorization message one to one; Do the authorization message of said each functional module as a whole; Form the log-on message of application software, distinguish to separate sign between the authorization message of each functional module; Wherein, said authorization message comprises at least: functional module title, registration ID and machine code; Said registration ID generates according to the system time of said subscriber computer, and is corresponding one by one with functional module;
Use private key to using the log-on message signature of software, generate the log-on message file of application software.
A kind of use authority method of application software, carry out following steps in the subscriber computer side:
S1, after the log-on message file success of the checking application software that uses public-key on the application software, import the authorization message of each functional module in the said log-on message file and preserve;
Said log-on message file is generated through private key signature by the log-on message of application software;
The log-on message of said application software comprises the authorization message of each functional module, distinguishes to separate sign between the authorization message of each functional module; Said authorization message comprises: this functional module title, registration ID and machine code; Registration ID generates according to the system time of said subscriber computer, and is corresponding one by one with functional module;
When S2, application software operation, arbitrary functional module is obtained the authorization message corresponding with this functional module title in said each functional module, and the service application function of this functional module is provided when authorization message is effective.
A kind of log-on message file creating apparatus of application software comprises: machine code generation module and log-on message file generating module, wherein:
The machine code generation module is used to obtain MAC Address of Network Card, hard disk sequence number and the CPU sequence number of subscriber computer, and generates machine code according to the information of being obtained;
The log-on message file generating module; Be used for title according to said machine code, each functional module of application software; Generate and each functional module authorization message one to one, the authorization message of said each functional module is done as a whole, form the log-on message of application software; Use private key that log-on message is signed, generate the log-on message file;
Wherein, said authorization message comprises at least: functional module title, registration ID, machine code; Registration ID generates according to the system time of subscriber computer, and is corresponding one by one with functional module.
Beneficial effect of the present invention does; Through segmenting by functional module to using software, generate the log-on message file that includes said each functional module authorization message, thereby; When on application software, importing said log-on message file; Each functional module is obtained the authorization message corresponding with its title, and the service application function of the corresponding number-of-registration of this functional module just can be provided, and realizes the sub-module mandate of application software.
Simultaneously; The present invention adds up through the not out of date authorization message with existing same application software on the authorization message of the log-on message file of current importing and the subscriber computer; Thereby, when the user need carry out dilatation to application software, the not out of date log-on message file of existing same application software on the subscriber computer capable of using; Increase the application software that is applied to subscriber computer and support the quantity of client; Thereby reach effect, reduce the application software quantity that needs purchase, avoid bringing unnecessary loss to the user to using the application software client terminal quantity to control.
Embodiment
In order to make the object of the invention, technical scheme and advantage clearer, below, the present invention is elaborated through specific embodiment and referring to accompanying drawing.
Among the present invention; Segment by functional module using software; Through in log-on message, adding each functional module authorization message of application software, generate the log-on message file that includes said each functional module authorization message, thereby; When the user imports said log-on message file on application software; Arbitrary functional module is obtained the authorization message corresponding with this functional module title in said each functional module, and the service application function of the corresponding number-of-registration of this functional module just can be provided, and realizes the sub-module mandate of application software.
Simultaneously; Not out of date authorization message through with the same module of existing same application software on the authorization message of arbitrary functional module in the log-on message file of current importing and the subscriber computer adds up; When the user need carry out dilatation to application software; Can utilize the not out of date log-on message file of previous existing same application software on the subscriber computer, avoid bringing unnecessary loss to the user.
The log-on message document generating method flow process of the application software of the embodiment of the invention is as shown in Figure 1, carries out following steps in application software provider side:
Step 101: obtain MAC Address of Network Card, hard disk sequence number, the CPU sequence number of subscriber computer, generate machine code;
Extract the relevant information of subscriber computer by application software at the user place; Comprise: MAC Address of Network Card, hard disk sequence number, CPU sequence number, send to application software provider, application software provider is according to the relevant information of the above-mentioned subscriber computer that gets access to; Carry out the MD5 digest computing; Obtain the summary info of subscriber computer, because summary info is long, the present invention only picks last 25 characters of wanting information machine code as subscriber computer.
Step 102: according to the title of each functional module in said machine code, the application software; Generation and each functional module be authorization message one to one; Do the authorization message of said each functional module as a whole; Form the log-on message of application software, distinguish to separate sign between the authorization message of each functional module; Wherein, said authorization message comprises at least: functional module title, registration ID and machine code; Said registration ID generates according to the system time of said subscriber computer, and is corresponding one by one with functional module.
Application software provider is divided into different module with application software by function; The user can be according to the needs selection function module of oneself; The log-on message of the application software that generates has comprised the authorization message of each functional module, and wherein the authorization message of arbitrary functional module comprises: this functional module title, registration ID, machine code.
Preferably, the authorization message of arbitrary functional module further comprises in said each functional module: the expiration time that the number-of-registration of functional module and/or application software are used
For each selected functional module, can confirm the number-of-registration that the user will buy, but the use number through said number-of-registration limitation function module.
Through in the authorization message of any functional module, adding the expiration time that application software is used, and the current system time of expiration time and subscriber computer is compared, can limit the service time of each functional module of application software.
For example, the authorization message of functional module is following arbitrarily:
Module Name (functional module title): RecordServer
Register ID (registration ID): 1305271150864
Machine Code (machine code): B60DC16E8D14D9C1928020DC5
Register Number (functional module number-of-registration): 5
Maturity (expiration time): on Dec 31st, 2012
In log-on message, the machine code in each functional module authorization message is identical; Registration ID generates according to system time, and is corresponding one by one with functional module.
When generation includes the log-on message of said each functional module authorization message; Can adopt the DES algorithm of sharing key, said each functional module authorization message is carried out enciphering transformation, hide authorization message; Promptly hide authoring system and realize details, to strengthen security.
Step 103: use private key to using the log-on message signature of software, generate the log-on message file of application software.
Application software provider uses the register-file Core Generator; The title of each functional module in the application software and number-of-registration thereof, registration ID, machine code is together information integrated; The unified MD5withRSA signature algorithm that uses; Authorize private key information, the computing and generate the log-on message file of signing, guarantee the log-on message file safe, can not distort.
For example, if the user only buys two functional module ReadServer and RecordServer in the application software, the form of the log-on message file that then generates is following:
Module Name (functional module title): ReadServer
Register ID (registration ID): 1305271150864
Machine Code (machine code): B60DC16E8D14D9C1928020DC5
Register Number (functional module number-of-registration): 5
Maturity (expiration time): on Dec 31st, 2012
--------------------
Module Name (functional module title): RecordServer
Register ID (registration ID): 1316272250971
Machine Code (machine code): B60DC16E8D14D9C1928020DC5
Register Number (functional module number-of-registration): 10
Maturity (expiration time): the year two thousand twenty Dec 31
--------------------
I2jHO80vS/ck+ZRrxqEqBKt4lPb8jq6gCvaHA3VnFlQMyIU2qj6xjE2/17/nAacc9fCHLR7gqfrJ6oBxpXI5EZi3tcSVC427JSNxU/8UEHFn9FiZB5Juvn3W5VNNGL5NosfaeaySW+DhORkZJ9F6vjy4K3RzGmapvPuZE8qjIik=
Wherein, symbol "--------------------" for separating sign, separate sign and can adopt various forms, be not limited to the symbol in the above-mentioned example.Last three line characters are signing messages.Between each functional module authorization message and between log-on message and the signing messages, all be connected in the log-on message, so that can distinguished, separate between each functional module authorization message to separate sign.
For strengthening security, before using private key, can add private information to log-on message to the log-on message signature.Said private information is the character string of any appointment, and purpose makes it be not easy to be recognized for each the functional module authorization message in the log-on message is obscured.
After the log-on message document generating method that adopts above-mentioned application software generated the log-on message file, with it accordingly, the use authority method flow of the application software of the embodiment of the invention was as shown in Figure 2, carried out following steps in the subscriber computer side:
Step 201: after the log-on message file success of the checking application software that uses public-key on the application software, import the authorization message and the preservation of each functional module in the said log-on message file;
Said log-on message file is generated through private key signature by the log-on message of application software; Be the log-on message file in the step 102,103.
The log-on message of said application software comprises the authorization message of each functional module, distinguishes to separate sign between the authorization message of each functional module; Said authorization message comprises: this functional module title, registration ID and machine code; Registration ID generates according to the system time of said subscriber computer, and is corresponding one by one with functional module;
Application software is used log-on message and the signing messages of separating in the sign separation log-on message file; Read log-on message, signing messages; The public key information, the signing messages that use MD5withRSA signature algorithm, application software to carry then carry out signature verification to said log-on message.
Step 202: during the application software operation, arbitrary functional module is obtained the authorization message corresponding with this functional module title in said each functional module, and the service application function of this functional module is provided when authorization message is effective.
Said authorization message is effective, is meant the authorization message that can correctly get access to functional module.When adding the expiration time that application software is used in the authorization message, said authorization message is effective, refers to correctly to get access to the not out of date authorization message of functional module.
Arbitrary functional module is obtained the method for the authorization message corresponding with this functional module title and is in said each functional module: arbitrary functional module finds the title of this functional module in said each functional module from the authorization message of said each functional module, reads all authorization messages of separating between the sign, including this functional module title.
Preferably, described in the step 201 in each functional module the authorization message of arbitrary functional module further comprise: the number-of-registration of this functional module;
At this moment, step 202 further comprises: the service application function that the corresponding number-of-registration of this functional module is provided.
Preferably, when the user buys and receives the log-on message file of the same application software that application software provider side sends once more, just when application software is authorized to once more, repeated execution of steps 201;
For the not out of date authorization message of the same functional module of existing same application software on the authorization message of arbitrary functional module in the log-on message file of realizing current importing and the subscriber computer adds up, the authorization message of arbitrary functional module further comprises in said each functional module: the expiration time that application software is used;
At this moment, the authorization message and the preservation that import each functional module in the log-on message file described in the step 201 need detect the registration ID of each authorization message before.Because when repeatedly importing the functional module authorization message of same registration ID; Only can be considered to a authorization message; Repeatedly import and situation about adding up takes place for fear of the authorization message of same registration ID; Carry out following detection, promptly after the log-on message file success of the checking application software that uses public-key on the application software, further comprise:
For all the registration ID in the log-on message file that receives; Detect whether any registration ID has been present under the installation directory of application software among said all registration ID; If exist; Then on application software, do not import with this registration ID corresponding functional module authorization message, otherwise, on application software, import corresponding functional module authorization message with this registration ID; And, make the authorization message of arbitrary functional module in each functional module comprise existing authorization message in authorization message and the user machine system of the current importing corresponding with this functional module title, form the authorization message set of this functional module.
Then; According to the expiration time of any authorization message and the current system time of subscriber computer side in the said authorization message set, judge whether this authorization message is expired, if expired; This authorization message is set for banning use of state; Number-of-registration to all not out of date authorization messages in the set of said authorization message adds up, and the number-of-registration N after adding up provides the service application function of N number-of-registration of this functional module greater than 0 the time.
In case find that arbitrary authorization message is expired in this authorization message set; This authorization message is set immediately for banning use of state; All the other not out of date authorization messages of functional module that will be corresponding with said authorization message set add up again, with the rights of using of each functional module in the application software that upgrades in time.
Said according to the expiration time of any authorization message and the current system time of subscriber computer side in the said authorization message set, judge whether this authorization message is expired, and the method for said judgement is:
All convert the expiration time and the user side system for computer time of this authorization message into numerical value; If the numerical value of the expiration time of this authorization message is less than the numerical value of the current system time of user side computing machine; Judge that then this authorization message is expired, otherwise, judge that this authorization message is not out of date.Said expiration time and current system time are all got the form of " year-moon-Ri ", such as, 2011-09-23.
Said according to the expiration time of any authorization message and the current system time of subscriber computer side in the said authorization message set; Judge whether expired execution time point is this authorization message: when starting application software at every turn; Perhaps,, application software judges when moving by the predefined time cycle.
The user can repeatedly import the log-on message file of by-batch purchase, and application software will add up to all not out of date authorization messages of same functional module, and the service application function of the corresponding number-of-registration of said functional module is provided.In the prior art, do not consider this kind accumulate mode, great majority all are the single registration code of input or import single register-file more.
Therefore, adopt the inventive method, can increase the quantity that the application software that is applied to subscriber computer is supported client, when the user need carry out dilatation to application software, can reduce the purchase volume of application software, help the user to avoid unnecessary loss.
For example; 50 installations of 100 of A functional modules, B functional module of user's purchase in 2010 application software on computers; Use A functional module, 50 clients to use the B functional module to support 100 clients; The number-of-registration of A functional module is 100 in the log-on message file that generates, the number-of-registration of B functional module is 50, and registration ID is respectively 1305271150864,1325271150864, and expiration time is the year two thousand twenty Dec 31;
This user was plan dilatation in 2011; With the use dilatation to 100 of the use dilatation to 200 of A functional module in the identical application software, B functional module; After using the inventive method; The user only need to the number-of-registration that application software provider buys the A functional module be 100, the number-of-registration of B functional module is 50 log-on message file; That bought through log-on message file that 2011 are bought and 2010, still the A in the not out of date log-on message file, the number-of-registration of B functional module add up; Just can obtain the rights of using effect of 200 of A functional modules in the identical application software, 100 of B functional modules, the not out of date log-on message file of having bought before promptly can utilizing.
But present prior art is if will reach above-mentioned effect, for same application software; At first do not segment so that sub-module is bought according to the functional module of application software, secondly, log-on message file that bought, not out of date before can't utilizing; For example, user 2010 buys 100 of application software, wants dilatation to 200 in 2011; Then can only buy number-of-registration again and be 200 register-file or registration code; When it was imported application software, owing to be same application software, that bought, number-of-registration in 2010 was that 100 register-file or registration code just can not re-use; Registration code that new of importing in 2011 are bought or register-file can replace registration code or the register-file to buy in 2010, bring loss to the user.
That is to say; If the user buys 200 of same application software 2011, import on the subscriber computer, adopt prior art; The application software that is applied to subscriber computer can only support the application software of 200 clients to use; But employing the inventive method, after then adding up through 200 100 of not out of date number-of-registration with the same application software of purchase in 2010 of application software number-of-registration that 2011 are bought, the application software that is applied to subscriber computer can support the application software of 300 clients to use; Obviously increase the application software that is applied to subscriber computer and supported the quantity of client; When the user need carry out dilatation to application software, can reduce the purchase volume of application software, help the user to avoid unnecessary loss.
The log-on message file creating apparatus structure of the application software of the embodiment of the invention is as shown in Figure 3, and this device is positioned at application software provider side, comprising: machine code generation module 301 and log-on message file generating module 302, wherein:
The machine code generation module is used to obtain MAC Address of Network Card, hard disk sequence number and the CPU sequence number of subscriber computer, and generates machine code according to the information of being obtained;
The log-on message file generating module; Be used for title according to said machine code, each functional module of application software; Generate and each functional module authorization message one to one, the authorization message of said each functional module is done as a whole, form the log-on message of application software; Use private key that log-on message is signed, generate the log-on message file;
Wherein, said authorization message comprises at least: functional module title, registration ID, machine code; Registration ID generates according to the system time of subscriber computer, and is corresponding one by one with functional module.
Preferably, the authorization message of arbitrary functional module further comprises in said each functional module: the expiration time that the number-of-registration of functional module and/or application software are used
For each selected functional module, can confirm the number-of-registration that the user will buy, but the use number through said number-of-registration limitation function module.
Through in the authorization message of any functional module, adding the expiration time that application software is used, and the current system time of expiration time and subscriber computer is compared, can limit the service time of each functional module of application software.
Log-on message file generating module 302 also is used to adopt the DES algorithm of sharing key, and the authorization message of each functional module in the log-on message that generates is carried out enciphering transformation, hides authorization message, promptly hides authoring system and realizes details, to strengthen security.
Log-on message file generating module 302 also is used for before using private key to the log-on message signature, log-on message being added private information.Said private information is the character string of any appointment, and purpose makes it be not easy to be recognized for each the functional module authorization message in the log-on message is obscured.
The above is merely preferred embodiment of the present invention, and is in order to restriction the present invention, not all within spirit of the present invention and principle, any modification of being made, is equal to replacement, improvement etc., all should be included within the scope that the present invention protects.