CN108418833B - Software management method, cloud server and terminal - Google Patents

Software management method, cloud server and terminal Download PDF

Info

Publication number
CN108418833B
CN108418833B CN201810255293.6A CN201810255293A CN108418833B CN 108418833 B CN108418833 B CN 108418833B CN 201810255293 A CN201810255293 A CN 201810255293A CN 108418833 B CN108418833 B CN 108418833B
Authority
CN
China
Prior art keywords
piece
file
learning
cloud server
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810255293.6A
Other languages
Chinese (zh)
Other versions
CN108418833A (en
Inventor
朱勇
赵海军
邹鹏程
刘学辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Changsuo Software Technology Shanghai Co ltd
ThunderSoft Co Ltd
Original Assignee
ThunderSoft Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ThunderSoft Co Ltd filed Critical ThunderSoft Co Ltd
Priority to CN201810255293.6A priority Critical patent/CN108418833B/en
Publication of CN108418833A publication Critical patent/CN108418833A/en
Application granted granted Critical
Publication of CN108418833B publication Critical patent/CN108418833B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/101Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management

Abstract

The invention discloses a software management method, a cloud server and a terminal.A learning article provider uploads a learning article file which is digitally signed by a private key to the cloud server for storage, a learning article user sends a request for downloading the learning article file to the cloud server, the cloud server searches for the corresponding learning article file from the stored learning article file, encrypts the digitally signed learning article file by using a public key of the learning article user and downloads the encrypted learning article file to the terminal of the learning article user, and the terminal decrypts the encrypted learning article file by using the private key of the learning article user and performs digital signature verification on the decrypted learning article file by using the public key of the learning article provider so as to obtain the required learning article file. According to the invention, through the sharing of the learning piece, the learning piece user does not need to develop the learning piece by himself, so that the development period of the learning piece is greatly shortened.

Description

Software management method, cloud server and terminal
Technical Field
The invention relates to the technical field of computers, in particular to a software management method, a cloud server and a terminal.
Background
Machine learning is generally divided into: supervised learning, unsupervised learning, semi-supervised learning, and the like, wherein the supervised learning is the most common. Supervised learning refers to: a function, i.e. a machine learning model, is learned from a given set of training data, which function can be used to predict the corresponding outcome of new data as it arrives.
"software 2.0/widget" is a file that is trained by machine learning and contains models (models), weights (weights) and model description conventions (specification). However, the current machine learning technology has a certain limitation, and needs to be solved for each problem, such as vision and speech recognition, vision generation, speech synthesis, games, and the like, one by one, thereby resulting in a long development period of the learning object.
Disclosure of Invention
In view of this, the invention discloses a software management method, a cloud server and a terminal, so as to solve the problem of long development period of a piece of study in the conventional scheme.
A management method of software is applied to a cloud server, and comprises the following steps:
receiving a study piece downloading request sent by a study piece user, wherein the study piece downloading request carries relevant information of a study piece to be downloaded, and the study piece user is a registered user with a study piece downloading permission from the cloud server;
searching a piece of study file corresponding to the piece of study downloading request from a prestored piece of study file, wherein the piece of study file is digitally signed by a private key of a piece of study provider before being uploaded to the cloud server by a corresponding piece of study provider, and the piece of study provider is a registered user with the authority of uploading the piece of study from the cloud server;
encrypting the digitally signed document file by using the public key of the document user;
downloading the encrypted file to a terminal used by the file user, decrypting the encrypted file by the terminal by using a private key of the file user, and performing digital signature verification on the decrypted file by using the acquired public key of the file provider, wherein the file which passes the digital signature verification is the file to be downloaded.
Preferably, the study file includes: the to-be-downloaded piece and the copyright license information.
Preferably, the downloading the encrypted file to the terminal used by the user of the file includes:
sending payment fee information to the student user;
after the fact that the payment of the student is completed is confirmed, downloading the encrypted student file to the terminal;
or the like, or, alternatively,
sending a free trial date of the encrypted file to the file user, and downloading the encrypted file to the terminal;
when the free trial date comes, sending payment fee information to the student user, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file;
and after the fact that the payment of the student is completed is determined, unlocking the encrypted student file.
Preferably, the process of the terminal acquiring the public key of the student provider includes:
when the terminal and the cloud server do not establish binding in advance, the public key of the student provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal;
or the like, or, alternatively,
when the binding connection is pre-established between the terminal and the cloud server, the public key of the student provider is actively acquired from the cloud server after the encrypted file is downloaded by the terminal.
Preferably, the registration process of the school piece user comprises:
receiving a first registration request sent by the student user, where the first registration request carries first registration information of the student user, and the first registration information includes: a registered account number of the piece of study user;
registering the student piece user by utilizing the first registration information carried in the first registration request, and generating a public and private key pair of the student piece user after the registration is finished;
and sending the private key of the student user to the student user, and storing the public key of the student user.
Preferably, the registration process of the school things provider comprises:
receiving a second registration request sent by the school piece provider, where the second registration request carries second registration information of the school piece provider, and the second registration information includes: a registered account number of the pickup provider;
registering the school things provider by using the second registration information carried in the second registration request, and generating a public and private key pair of the school things provider after the registration is finished;
and sending the private key of the school piece provider to the school piece provider, and storing the public key of the school piece provider.
A management method of software is applied to a terminal used by a student, wherein the student is a registered user with the authority of downloading the student from a cloud server, and the management method comprises the following steps:
sending a request for downloading the learning piece to the cloud server, wherein the request for downloading the learning piece carries the related information of the learning piece to be downloaded;
acquiring an encrypted piece file downloaded by the cloud server, wherein the encrypted piece file is obtained by the cloud server searching a piece file corresponding to the piece downloading request from a pre-stored piece file, the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by a corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of a piece user, and the piece provider is a registered user having the authority of uploading the piece from the cloud server;
decrypting the encrypted file of the piece of study by using the private key of the user of the piece of study;
acquiring a public key of the student provider;
and carrying out digital signature verification on the decrypted piece of study file by adopting the public key of the piece of study provider, wherein the piece of study file passing the digital signature verification is the piece of study to be downloaded.
Preferably, the process of acquiring the public key of the student provider includes:
when the terminal and the cloud server do not establish the association connection in advance, the public key of the student provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal;
or the like, or, alternatively,
when the terminal and the cloud server establish the association connection in advance, the public key of the student provider is actively acquired from the cloud server after the terminal downloads the encrypted file.
Preferably, the obtaining of the encrypted file downloaded by the cloud server specifically includes:
receiving payment expense information sent by the cloud server;
paying operation is carried out according to the payment expense information, and after payment is finished, an encrypted file downloaded by the cloud server is obtained;
or the like, or, alternatively,
receiving a free trial date of the learning file sent by the cloud server and the downloaded encrypted learning file;
receiving payment cost information sent by the cloud server when the free trial date comes;
and carrying out payment operation according to the payment expense information, and unlocking the locked encrypted file after payment is finished so as to continue using the encrypted file.
A cloud server, comprising:
the system comprises a first receiving unit, a second receiving unit and a third receiving unit, wherein the first receiving unit is used for receiving a learning piece downloading request sent by a learning piece user, the learning piece downloading request carries relevant information of a learning piece to be downloaded, and the learning piece user is a registered user with the learning piece downloading permission from the cloud server;
a learning piece searching unit, configured to search a learning piece file corresponding to the request for downloading the learning piece from a pre-stored learning piece file, where the learning piece file is digitally signed by a private key of a corresponding learning piece provider before being uploaded to the cloud server by the learning piece provider, and the learning piece provider is a registered user having a right to upload the learning piece from the cloud server;
the encryption unit is used for encrypting the digital signed student file by adopting the public key of the student user;
the first downloading unit is used for downloading the encrypted piece file to a terminal used by the piece learning user, the terminal decrypts the encrypted piece file by adopting a private key of the piece learning user, and performs digital signature verification on the decrypted piece learning file by using the acquired public key of the piece learning provider, wherein the piece learning file passing the digital signature verification is the piece to be downloaded.
Preferably, the study file includes: the to-be-downloaded piece and the copyright license information.
Preferably, the first downloading unit includes:
the first payment sending subunit is used for sending payment information to the student user;
the first downloading subunit is used for downloading the encrypted file to the terminal after determining that the payment of the file user is completed;
or the like, or, alternatively,
the second downloading subunit is used for sending the free trial date of the encrypted file to the file user and downloading the encrypted file to the terminal;
the second payment sending subunit is used for sending payment information to the student user when the free trial date comes, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file;
and the unlocking subunit is used for unlocking the encrypted file of the student after determining that the payment of the student is completed.
A terminal, the terminal being a terminal used by a piece-learning user, the piece-learning user being a registered user having the right to download a piece-learning from a cloud server, the terminal comprising:
the request sending unit is used for sending a request for downloading the learning object to the cloud server, wherein the request for downloading the learning object carries the related information of the learning object to be downloaded;
a first obtaining unit, configured to obtain an encrypted piece file downloaded by the cloud server, where the encrypted piece file is a piece file that is searched by the cloud server from pre-stored piece files and corresponds to the piece downloading request, the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by the corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of the piece user, and the piece provider is a registered user having a right to upload a piece from the cloud server;
the decryption unit is used for decrypting the encrypted file of the piece of study by adopting a private key of the user of the piece of study;
a second obtaining unit, configured to obtain a public key of the pickup provider;
and the verification unit is used for performing digital signature verification on the decrypted piece file by adopting the public key of the piece supplier, wherein the piece file passing the digital signature verification is the piece to be downloaded.
Preferably, the second acquiring unit includes:
the first obtaining subunit is configured to, when the terminal and the cloud server do not establish an association connection in advance, send, by the cloud server, a public key of the pickup provider to the terminal when the encrypted file is downloaded to the terminal;
and the combination of (a) and (b),
and the second acquisition subunit is used for actively acquiring the public key of the student part provider from the cloud server after the terminal downloads the encrypted file when the terminal and the cloud server establish the association connection in advance.
Preferably, the first acquiring unit includes:
the first receiving subunit is used for receiving payment fee information sent by the cloud server;
the first payment operation subunit is used for performing payment operation according to the payment fee information and acquiring the encrypted file downloaded by the cloud server after payment is completed;
or the like, or, alternatively,
the second receiving subunit is configured to receive a free trial date of the pickup file sent by the cloud server and the downloaded encrypted pickup file;
the third receiving subunit is used for receiving the payment fee information sent by the cloud server when the free trial date comes;
and the second payment operation subunit is used for performing payment operation according to the payment fee information, and unlocking the locked encrypted file after payment is completed so as to continue to use the encrypted file.
According to the technical scheme, the invention discloses a software management method, a cloud server and a terminal, wherein a learning piece provider sends a learning piece file which is digitally signed by a private key to the cloud server for storage, a learning piece user sends a request for downloading the learning piece file to the cloud server, the cloud server searches the corresponding learning piece file from the stored learning piece file, the digitally signed learning piece file is encrypted by a public key of the learning piece user, the encrypted learning piece file is downloaded to the terminal used by the learning piece user, the terminal decrypts the encrypted learning piece file by the private key of the learning piece user, and the decrypted learning piece file is digitally signed and verified by the public key of the learning piece provider, and the learning piece file which passes the digital signature verification is the learning piece file required by the learning piece user. Compared with the traditional scheme, the method and the system have the advantages that the sharing of the learning articles is realized, so that the learning article user does not need to develop the learning articles by himself but directly obtains the learning articles from the cloud server, and the development period of the learning articles is greatly shortened.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the disclosed drawings without creative efforts.
FIG. 1 is a flowchart of a software management method according to an embodiment of the present invention;
FIG. 2 is a flowchart of another software management method disclosed in the embodiments of the present invention;
fig. 3 is a schematic structural diagram of a cloud server according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a terminal according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The embodiment of the invention discloses a software management method, a cloud server and a terminal, and aims to solve the problem of long development period of a piece of study in the traditional scheme.
Referring to fig. 1, an embodiment of the present invention discloses a software management method flowchart, where the method is applied to a cloud server, where the cloud server may be a server, a server group composed of a plurality of servers, or a cloud computing service center, and the method includes the steps of:
step S101, receiving a request for downloading a piece of study sent by a user of the piece of study;
the request for downloading the piece of study carries the related information of the piece of study to be downloaded, such as the application field of the piece of study, the content contained in the piece of study, and the like.
The study item user in this step is a registered user who has the right to download the study item from the cloud server, that is, the study item user is registered from the cloud server in advance.
The registration process of the student user may include:
the method comprises the following steps that a student sends a first registration request to a cloud service, wherein the first registration request carries first registration information of the student, and the first registration information comprises: a registered account number of the student user; the cloud server receives a first registration request sent by the student user; registering the student user by using first registration information carried in the first registration request, and generating a public and private key pair of the student user after the registration is finished; and sending the private key of the student user to the student user, and storing the public key of the student user.
Step S102, searching a learning object file corresponding to the request for downloading the learning object from the pre-stored learning object files;
it should be noted that, in this step, the piece of study file pre-stored by the cloud server is digitally signed by using the private key of the piece of study provider before being uploaded to the cloud server by the corresponding piece of study provider.
The study article provider is a registered user with the authority of uploading the study article from the cloud server, namely, the study article provider is registered from the cloud server in advance.
The registration process of the school piece provider may include:
the student provider sends a second registration request to the cloud server, wherein the second registration request comprises: a registered account number of the pickup provider; the cloud server receives a second registration request sent by the student provider; registering the school piece provider by using the second registration information carried in the second registration request, and generating a public and private key pair of the school piece provider after the registration is finished; and sending the private key of the school piece provider to the school piece provider, and storing the public key of the school piece provider.
In practical application, after the student provider registers in the cloud server, the student provider can upload developed students to the cloud server. When the number of registered learning article providers is large, a plurality of learning articles can be stored in the cloud server, so that a learning article user can obtain the required learning articles from the cloud server without redevelopment.
The learning piece stored by the cloud server can be in a binary byte stream form.
Digital signature (also called public key digital signature, electronic signature) is a common physical signature similar to that written on paper, and is realized by using the technology in the field of public key encryption and used for identifying digital information. A set of digital signatures typically defines two complementary operations, one for signing and the other for verification. In the invention, a private key of a study file provider is used for digitally signing the study file, correspondingly, a public key of the study file provider is used for verifying the digitally signed study file, when the digital signature verification is passed, the study file is indicated to be a usable study file, otherwise, when the digital signature verification is not passed, the study file is indicated to have problems and be an unusable study file.
S103, encrypting the digitally signed student file by using the public key of the student user;
and step S104, downloading the encrypted file to a terminal used by the file user, decrypting the encrypted file by the terminal by using a private key of the file user, and performing digital signature verification on the decrypted file by using the acquired public key of the file provider.
Specifically, after the cloud server downloads the encrypted piece file to the terminal used by the piece learning user, the terminal can decrypt the encrypted piece file according to the private key distributed to the piece learning user of the terminal by the cloud server.
Since the public key of the student provider is not stored in the terminal used by the student user, but stored in the cloud server, the terminal used by the student user needs to obtain the public key of the student provider from the cloud server, and the process of obtaining the public key of the student provider by the terminal includes:
when the binding relationship between the terminal and the cloud server is not established in advance, that is, the terminal is not provided with a learning article agent APP in advance, and the public key provided by the learning article can be directly acquired from the cloud server through the learning article agent APP terminal, the public key of a learning article provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal, and of course, the public key of the learning article provider can also be sent to the terminal by the cloud server before the encrypted file is downloaded to the terminal; or, the cloud server may also send the public key of the chemical provider to the terminal after downloading the encrypted file to the terminal.
When binding relationship is established in advance to terminal and high in the clouds server, the terminal has installed in advance a study agent APP, can directly obtain when the public key that the study provided this from the high in the clouds server through this study agent APP terminal, and the public key of study provider is by the terminal after downloading the encryption file, initiatively obtains to the high in the clouds server, and the process of obtaining can be: the terminal sends request information containing the public key of the student provider to the cloud server, and the cloud server sends the public key of the student provider to the terminal after receiving the request information.
It should be particularly noted that, in the present invention, the piece of study file that the digital signature verifies is the piece of study that the user of the piece of study needs to download, and at this time, the user of the piece of study can use the piece of study file that the digital signature verifies; when the digital signature of the piece of school file is not verified, the piece of school file is indicated to have a problem, and at the moment, a school user cannot verify the failed piece of school file by using the digital signature. In this case, the user of the study may again go to the cloud server to send a request for downloading the study.
In summary, the invention discloses a software management method, a study file provider uploads a study file which is digitally signed by a private key to a cloud server for storage, a study user sends a request for downloading the study file to the cloud server, the cloud server searches a corresponding study file from the stored study file, the public key of the study user is adopted to encrypt the digitally signed study file, the encrypted study file is downloaded to a terminal used by the study user, the terminal decrypts the encrypted study file by adopting the private key of the study user, and the decrypted study file is digitally signed and verified by using the obtained public key of the study provider, wherein the study file which passes the digital signature verification is the study file required by the study user. Compared with the traditional scheme, the method and the system have the advantages that the sharing of the learning articles is realized, so that the learning article user does not need to develop the learning articles by himself but directly obtains the learning articles from the cloud server, and the development period of the learning articles is greatly shortened.
In practical applications, the study file may include: the study item to be downloaded and the copyright license information may be set by the study item provider, for example, the study item may be allowed to be used for only three months, or the study item may be used for only 10 times, etc., the study item provider may be determined according to actual needs, and the invention is not limited herein.
Furthermore, the file of the learning piece can be set to a payment mode, that is, the user of the learning piece needs to pay a certain fee when downloading the required file of the learning piece, and the required file of the learning piece can be downloaded only after the payment of the fee is completed.
Therefore, in order to further optimize the above embodiment, the process of downloading the encrypted file to the terminal used by the user of the file in step S104 specifically includes:
and sending payment fee information to the learning piece user, and downloading the encrypted learning piece file to a terminal used by the learning piece user after the completion of payment of the learning piece user is determined.
Specifically, after receiving payment information sent by a cloud server, a terminal used by a piece learning user executes payment operation according to the payment information; and after the cloud server determines that the payment of the learning piece user is completed, downloading the encrypted learning piece file to a terminal used by the learning piece user.
Or, the process of downloading the encrypted piece file to the terminal used by the piece user in step S104 specifically includes:
sending a free trial date of the encrypted file to the file user, and downloading the encrypted file to the terminal; when the free trial date comes, sending payment fee information to the student user, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file; and after the fact that the payment of the student is completed is determined, unlocking the encrypted student file.
Specifically, the cloud server downloads the encrypted piece file to the piece learning user, limits the free trial date of the encrypted piece file, locks the encrypted piece file when the free trial date comes, enables the piece learning user to be incapable of continuing to use the encrypted piece file, reminds the piece learning user to pay, and unlocks the encrypted piece file after the fact that the piece learning user pays the fee is determined, and enables the piece learning user to continue to use the encrypted piece file.
It should be noted that, when the terminal used by the piece learning user is not bound to the cloud server, the fee paid by the piece learning user may not be allocated to the terminal; when the terminal used by the piece learning user is bound with the cloud server, namely, when a cooperation relationship exists between a terminal manufacturer of the terminal used by the piece learning user and the cloud server, the cloud server settles the fee to the piece learning provider and the terminal manufacturer, the piece learning provider charges most of the fee according to the proportion of the piece learning price, the terminal manufacturer of the piece learning user charges a certain fee according to the proportion of the piece learning price, and the fee distribution proportion of the piece learning provider and the terminal manufacturer is specifically determined according to actual needs.
In practical application, the pricing method of the item can be any one or a combination of the following methods, and the positioning method of the item comprises the following steps:
(1) demonstration of
This way, the study can be presented for free. Application pricing is zero. The presentation may optionally include a usage count limit (say, 1 to 10), a usage time limit (say, 1 to 10 minutes), and a usage days after download limit (say, 1 day). The user may download an application based on the demonstration pricing method, but if the usage rights are exceeded, the user must purchase to continue using.
(2) Purchasing
The purchased pricing method may choose any of the four modes of pricing basis. These four modes include defining a number of uses (e.g., 1 to 10), defining an expiration date (e.g., certain time of day of the greenwich time), defining a number of uses (e.g., seven days), and a time of use (e.g., 5 minutes).
(3) Subscription (monthly fee)
The pricing method of the subscription is actually monthly subscription. The user can subscribe and cancel the learning piece, and the monthly charging of the application downloading date by the user has no limit on the use times of the user.
(4) Upgrading
Upgrades may be free or may be charged a fixed fee. It can be automatically decided whether the requirements of the upgrade are met, the user can retain authorization information about the application, and the information of the upgraded version will overwrite the old version.
Preferably, the file agent library for storing file files in the cloud server is protected by SeLinux, and mature Open source (Open source code) can be encapsulated by file agent library APIs.
Referring to fig. 2, a flowchart of a software management method according to another embodiment of the present invention is disclosed, where the method is applied to a terminal used by a user of a piece of study, where the terminal may be a smart phone, an IPAD, a notebook, a desktop, or the like, the user of the piece of study is a registered user having a right to download the piece of study from a cloud server, and a registration process of the user of the piece of study is described in the foregoing embodiment, and is not described herein again.
The management method comprises the following steps:
step S201, sending a request for downloading the learning object to a cloud server;
the request for downloading the piece of study carries the related information of the piece of study to be downloaded, such as the application field of the piece of study, the content contained in the piece of study, and the like.
Step S202, acquiring an encrypted file downloaded by the cloud server;
the encrypted piece file is obtained by searching, by the cloud server, a piece file corresponding to the piece downloading request from a pre-stored piece file, and the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by a corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of a piece user, where the piece provider is a registered user having a right to upload a piece from the cloud server, and a registration process of the piece provider can refer to corresponding descriptions in the above embodiments, and details are not described here.
In practical application, after the student provider registers in the cloud server, the student provider can upload developed students to the cloud server. When the number of registered learning article providers is large, a plurality of learning articles can be stored in the cloud server, so that a learning article user can obtain the required learning articles from the cloud server without redevelopment.
Step S203, decrypting the encrypted file of the piece of study by using the private key of the user of the piece of study;
step S204, acquiring a public key of the student provider;
since the public key of the student provider is not stored in the terminal used by the student user, but stored in the cloud server, the terminal used by the student user needs to obtain the public key of the student provider from the cloud server, and the process of obtaining the public key of the student provider by the terminal includes:
when the binding relationship between the terminal and the cloud server is not established in advance, that is, the terminal is not provided with a learning article agent APP in advance, and the public key provided by the learning article can be directly acquired from the cloud server through the learning article agent APP terminal, the public key of a learning article provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal, and of course, the public key of the learning article provider can also be sent to the terminal by the cloud server before the encrypted file is downloaded to the terminal; or, the cloud server may also send the public key of the chemical provider to the terminal after downloading the encrypted file to the terminal.
When binding relationship is established in advance to terminal and high in the clouds server, the terminal has installed in advance a study agent APP, can directly obtain when the public key that the study provided this from the high in the clouds server through this study agent APP terminal, and the public key of study provider is by the terminal after downloading the encryption file, initiatively obtains to the high in the clouds server, and the process of obtaining can be: the terminal sends request information containing the public key of the student provider to the cloud server, and the cloud server sends the public key of the student provider to the terminal after receiving the request information.
And S205, carrying out digital signature verification on the decrypted file of the piece of school things by adopting the public key of the provider of the piece of school things.
And the piece file which passes the digital signature verification is the piece to be downloaded.
It should be particularly noted that, in the present invention, the piece of study file that the digital signature verifies is the piece of study that the user of the piece of study needs to download, and at this time, the user of the piece of study can use the piece of study file that the digital signature verifies; when the digital signature of the piece of school file is not verified, the piece of school file is indicated to have a problem, and at the moment, a school user cannot verify the failed piece of school file by using the digital signature. In this case, the user of the study may again go to the cloud server to send a request for downloading the study.
In summary, the invention discloses a software management method, a study file provider uploads a study file which is digitally signed by a private key to a cloud server for storage, a study user sends a request for downloading the study file to the cloud server, the cloud server searches a corresponding study file from the stored study file, a public key of the study user is adopted to encrypt the digitally signed study file, the encrypted study file is downloaded to a terminal used by the study user, the terminal decrypts the encrypted study file by adopting the private key of the study user, and the obtained public key of the study provider is used for carrying out digital signature verification on the decrypted study file, wherein the study file which passes the digital signature verification is the study file required by the study user. Compared with the traditional scheme, the method and the system have the advantages that the sharing of the learning articles is realized, so that the learning article user does not need to develop the learning articles by himself but directly obtains the learning articles from the cloud server, and the development period of the learning articles is greatly shortened.
In practical applications, the study file may include: the study item to be downloaded and the copyright license information may be set by the study item provider, for example, the study item may be allowed to be used for only three months, or the study item may be used for only 10 times, etc., the study item provider may be determined according to actual needs, and the invention is not limited herein.
Furthermore, the file of the learning piece can be set to a payment mode, that is, the user of the learning piece needs to pay a certain fee when downloading the required file of the learning piece, and the required file of the learning piece can be downloaded only after the payment of the fee is completed.
Therefore, in order to further optimize the above embodiment, the step S202 of obtaining the encrypted file downloaded by the cloud server specifically includes:
receiving payment expense information sent by the cloud server; and carrying out payment operation according to the payment expense information, and acquiring the encrypted file downloaded by the cloud server after payment is finished. .
Specifically, after receiving payment information sent by a cloud server, a terminal used by a piece learning user executes payment operation according to the payment information; and after the cloud server determines that the payment of the learning piece user is completed, downloading the encrypted learning piece file to a terminal used by the learning piece user.
Or, step S202 obtains the encrypted file downloaded by the cloud server, which specifically includes:
receiving a free trial date of the learning file sent by the cloud server and the downloaded encrypted learning file; receiving payment cost information sent by the cloud server when the free trial date comes; and carrying out payment operation according to the payment expense information, and unlocking the locked encrypted file after payment is finished so as to continue using the encrypted file.
Specifically, the cloud server downloads the encrypted piece file to the piece learning user, limits the free trial date of the encrypted piece file, locks the encrypted piece file when the free trial date comes, enables the piece learning user to be incapable of continuing to use the encrypted piece file, reminds the piece learning user to pay, and unlocks the encrypted piece file after the fact that the piece learning user pays the fee is determined, and enables the piece learning user to continue to use the encrypted piece file.
It should be noted that, when the terminal used by the piece learning user is not bound to the cloud server, the fee paid by the piece learning user may not be allocated to the terminal; when the terminal used by the piece learning user is bound with the cloud server, namely, when a cooperation relationship exists between a terminal manufacturer of the terminal used by the piece learning user and the cloud server, the cloud server settles the fee to the piece learning provider and the terminal manufacturer, the piece learning provider charges most of the fee according to the proportion of the piece learning price, the terminal manufacturer of the piece learning user charges a certain fee according to the proportion of the piece learning price, and the fee distribution proportion of the piece learning provider and the terminal manufacturer is specifically determined according to actual needs.
The pricing method of the learning object can refer to the corresponding parts of the above embodiments, and details are not repeated here.
Corresponding to the embodiment of the method, the invention also discloses a cloud server and a terminal.
Referring to fig. 3, an embodiment of the present invention discloses a structural schematic diagram of a cloud server, where the cloud server includes:
a first receiving unit 301, configured to receive a request for downloading a piece of study from a piece of study user, where the request for downloading the piece of study carries information related to the piece of study to be downloaded;
the learning piece user is a registered user who has the authority of downloading the learning piece from the cloud server.
The registration process of the user of the widget can be referred to the corresponding part of the method embodiment, and is not described herein again.
A learning object searching unit 302, configured to search a pre-stored learning object file for a learning object file corresponding to the request for downloading the learning object, where the learning object file has been digitally signed by a private key of a corresponding learning object provider before being uploaded to the cloud server by the corresponding learning object provider, where the learning object provider is a registered user having the authority to upload the learning object from the cloud server;
for the registration process of the student provider, reference may be made to the corresponding part of the method embodiment, which is not described herein again.
In practical application, after the student provider registers in the cloud server, the student provider can upload developed students to the cloud server. When the number of registered learning article providers is large, a plurality of learning articles can be stored in the cloud server, so that a learning article user can obtain the required learning articles from the cloud server without redevelopment.
The learning piece stored by the cloud server can be in a binary byte stream form.
In the invention, the student file provider uses the private key to digitally sign the student file, correspondingly, the public key of the student file provider is used to verify the digitally signed student file, when the digital signature passes the verification, the student file is indicated to be the usable student file, otherwise, when the digital signature fails to pass the verification, the student file is indicated to have problems and is the unusable student file.
An encrypting unit 303, configured to encrypt the digitally signed document file by using the public key of the document user;
the first downloading unit 304 is configured to download the encrypted piece file to a terminal used by the piece user, decrypt the encrypted piece file by using a private key of the piece user through the terminal, and perform digital signature verification on the decrypted piece file by using the obtained public key of the piece provider, where the piece file that passes the digital signature verification is the piece to be downloaded.
Specifically, after the cloud server downloads the encrypted piece file to the terminal used by the piece learning user, the terminal can decrypt the encrypted piece file according to the private key distributed to the piece learning user of the terminal by the cloud server.
Since the public key of the student provider is not stored in the terminal used by the student user, but stored in the cloud server, the terminal used by the student user needs to obtain the public key of the student provider from the cloud server, and the process of obtaining the public key of the student provider by the terminal includes:
when the binding relationship between the terminal and the cloud server is not established in advance, that is, the terminal is not provided with a learning article agent APP in advance, and the public key provided by the learning article can be directly acquired from the cloud server through the learning article agent APP terminal, the public key of a learning article provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal, and of course, the public key of the learning article provider can also be sent to the terminal by the cloud server before the encrypted file is downloaded to the terminal; or, the cloud server may also send the public key of the chemical provider to the terminal after downloading the encrypted file to the terminal.
When binding relationship is established in advance to terminal and high in the clouds server, the terminal has installed in advance a study agent APP, can directly obtain when the public key that the study provided this from the high in the clouds server through this study agent APP terminal, and the public key of study provider is by the terminal after downloading the encryption file, initiatively obtains to the high in the clouds server, and the process of obtaining can be: the terminal sends request information containing the public key of the student provider to the cloud server, and the cloud server sends the public key of the student provider to the terminal after receiving the request information.
It should be particularly noted that, in the present invention, the piece of study file that the digital signature verifies is the piece of study that the user of the piece of study needs to download, and at this time, the user of the piece of study can use the piece of study file that the digital signature verifies; when the digital signature of the piece of school file is not verified, the piece of school file is indicated to have a problem, and at the moment, a school user cannot verify the failed piece of school file by using the digital signature. In this case, the user of the study may again go to the cloud server to send a request for downloading the study.
In summary, in the cloud server disclosed by the invention, the study file digitally signed by the private key is uploaded to the cloud server by the study provider for storage, the study user sends a study file downloading request to the cloud server, the cloud server searches the corresponding study file from the stored study file, the public key of the study user is adopted to encrypt the digitally signed study file, the encrypted study file is downloaded to the terminal used by the study user, the terminal decrypts the encrypted study file by adopting the private key of the study user, and the obtained public key of the study provider is used for performing digital signature verification on the decrypted study file, wherein the study file passing the digital signature verification is the study file required by the study user. Compared with the traditional scheme, the method and the system have the advantages that the sharing of the learning articles is realized, so that the learning article user does not need to develop the learning articles by himself but directly obtains the learning articles from the cloud server, and the development period of the learning articles is greatly shortened.
In practical applications, the study file may include: the study item to be downloaded and the copyright license information may be set by the study item provider, for example, the study item may be allowed to be used for only three months, or the study item may be used for only 10 times, etc., the study item provider may be determined according to actual needs, and the invention is not limited herein.
Furthermore, the file of the learning piece can be set to a payment mode, that is, the user of the learning piece needs to pay a certain fee when downloading the required file of the learning piece, and the required file of the learning piece can be downloaded only after the payment of the fee is completed.
Therefore, to further optimize the above embodiment, the first downloading unit 304 may include:
the first payment sending subunit is used for sending payment information to the student user;
and the first downloading subunit is used for downloading the encrypted file to the terminal after determining that the payment of the file user is completed.
Specifically, after receiving payment information sent by a cloud server, a terminal used by a piece learning user executes payment operation according to the payment information; and after the cloud server determines that the payment of the learning piece user is completed, downloading the encrypted learning piece file to a terminal used by the learning piece user.
Or, the first downloading unit 304 may include:
the second downloading subunit is used for sending the free trial date of the encrypted file to the file user and downloading the encrypted file to the terminal;
the second payment sending subunit is used for sending payment information to the student user when the free trial date comes, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file;
and the unlocking subunit is used for unlocking the encrypted file of the student after determining that the payment of the student is completed.
Specifically, the cloud server downloads the encrypted piece file to the piece learning user, limits the free trial date of the encrypted piece file, locks the encrypted piece file when the free trial date comes, enables the piece learning user to be incapable of continuing to use the encrypted piece file, reminds the piece learning user to pay, and unlocks the encrypted piece file after the fact that the piece learning user pays the fee is determined, and enables the piece learning user to continue to use the encrypted piece file.
It should be noted that, when the terminal used by the piece learning user is not bound to the cloud server, the fee paid by the piece learning user may not be allocated to the terminal; when the terminal used by the piece learning user is bound with the cloud server, namely, when a cooperation relationship exists between a terminal manufacturer of the terminal used by the piece learning user and the cloud server, the cloud server settles the fee to the piece learning provider and the terminal manufacturer, the piece learning provider charges most of the fee according to the proportion of the piece learning price, the terminal manufacturer of the piece learning user charges a certain fee according to the proportion of the piece learning price, and the fee distribution proportion of the piece learning provider and the terminal manufacturer is specifically determined according to actual needs.
The pricing method of the learning object can refer to the corresponding part of the method embodiment, and is not described herein again.
Referring to fig. 4, a schematic structural diagram of a terminal disclosed in an embodiment of the present invention is shown, where the terminal is a terminal used by a user of a piece of study, and may be a smart phone, an IPAD, a notebook, a desktop computer, and the like, the user of the piece of study is a registered user having a right to download the piece of study from a cloud server, and a registration process of the user of the piece of study may be described in the corresponding description of the method embodiment, and is not described herein again.
The terminal includes:
a request sending unit 401, configured to send a request for downloading a piece of study to the cloud server, where the request for downloading the piece of study carries information about the piece of study to be downloaded;
a first obtaining unit 402, configured to obtain an encrypted piece file downloaded by the cloud server, where the encrypted piece file is obtained by the cloud server by searching a piece file corresponding to the piece downloading request from a pre-stored piece file, the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by the corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of the piece user, and the piece provider is a registered user having a right to upload a piece from the cloud server;
in practical application, after the student provider registers in the cloud server, the student provider can upload developed students to the cloud server. When the number of registered learning article providers is large, a plurality of learning articles can be stored in the cloud server, so that a learning article user can obtain the required learning articles from the cloud server without redevelopment.
A decryption unit 403, configured to decrypt the encrypted file by using the private key of the file user;
a second obtaining unit 404, configured to obtain a public key of the student provider;
since the public key of the student provider is not stored in the terminal used by the student user, but stored in the cloud server, the terminal used by the student user needs to obtain the public key of the student provider from the cloud server, and the process of obtaining the public key of the student provider by the terminal includes:
when the binding relationship between the terminal and the cloud server is not established in advance, that is, the terminal is not provided with a learning article agent APP in advance, and the public key provided by the learning article can be directly acquired from the cloud server through the learning article agent APP terminal, the public key of a learning article provider is sent to the terminal by the cloud server when the encrypted file is downloaded to the terminal, and of course, the public key of the learning article provider can also be sent to the terminal by the cloud server before the encrypted file is downloaded to the terminal; or, the cloud server may also send the public key of the chemical provider to the terminal after downloading the encrypted file to the terminal.
When binding relationship is established in advance to terminal and high in the clouds server, the terminal has installed in advance a study agent APP, can directly obtain when the public key that the study provided this from the high in the clouds server through this study agent APP terminal, and the public key of study provider is by the terminal after downloading the encryption file, initiatively obtains to the high in the clouds server, and the process of obtaining can be: the terminal sends request information containing the public key of the student provider to the cloud server, and the cloud server sends the public key of the student provider to the terminal after receiving the request information.
Accordingly, the second obtaining unit 404 may include:
the first obtaining subunit is configured to, when the terminal and the cloud server do not establish an association connection in advance, send, by the cloud server, a public key of the pickup provider to the terminal when the encrypted file is downloaded to the terminal;
and the combination of (a) and (b),
and the second acquisition subunit is used for actively acquiring the public key of the student part provider from the cloud server after the terminal downloads the encrypted file when the terminal and the cloud server establish the association connection in advance.
And a verification unit 405, configured to perform digital signature verification on the decrypted piece of study file by using the public key of the piece of study provider, where the piece of study file that passes the digital signature verification is the piece of study to be downloaded.
It should be particularly noted that, in the present invention, the piece of study file that the digital signature verifies is the piece of study that the user of the piece of study needs to download, and at this time, the user of the piece of study can use the piece of study file that the digital signature verifies; when the digital signature of the piece of school file is not verified, the piece of school file is indicated to have a problem, and at the moment, a school user cannot verify the failed piece of school file by using the digital signature. In this case, the user of the study may again go to the cloud server to send a request for downloading the study.
In summary, the invention provides a method for verifying a digital signature of a piece of study file, which includes the steps that a piece of study file provider uploads a piece of study file digitally signed by a private key to a cloud server for storage, a piece of study user sends a request for downloading the piece of study file to the cloud server, the cloud server searches for the corresponding piece of study file from the stored piece of study file, the public key of the piece of study user is used for encrypting the piece of study file digitally signed by the piece of study file, the encrypted piece of study file is downloaded to a terminal used by the piece of study user, the terminal decrypts the encrypted piece of study file by the private key of the piece of study user, and the obtained public key of the piece provider is used for verifying the digital signature of the decrypted piece of study file, wherein the piece of study file passing the verification of the digital signature is the piece of study file required by the piece of the piece user. Compared with the traditional scheme, the method and the system have the advantages that the sharing of the learning articles is realized, so that the learning article user does not need to develop the learning articles by himself but directly obtains the learning articles from the cloud server, and the development period of the learning articles is greatly shortened.
In practical applications, the study file may include: the study item to be downloaded and the copyright license information may be set by the study item provider, for example, the study item may be allowed to be used for only three months, or the study item may be used for only 10 times, etc., the study item provider may be determined according to actual needs, and the invention is not limited herein.
Furthermore, the file of the learning piece can be set to a payment mode, that is, the user of the learning piece needs to pay a certain fee when downloading the required file of the learning piece, and the required file of the learning piece can be downloaded only after the payment of the fee is completed.
Therefore, to further optimize the above embodiment, the first obtaining unit 402 may include:
the first receiving subunit is used for receiving payment fee information sent by the cloud server;
and the first payment operation subunit is used for performing payment operation according to the payment fee information and acquiring the encrypted file downloaded by the cloud server after payment is completed.
Specifically, after receiving payment information sent by a cloud server, a terminal used by a piece learning user executes payment operation according to the payment information; and after the cloud server determines that the payment of the learning piece user is completed, downloading the encrypted learning piece file to a terminal used by the learning piece user.
Or, the first obtaining unit 402 may include:
the second receiving subunit is configured to receive a free trial date of the pickup file sent by the cloud server and the downloaded encrypted pickup file;
the third receiving subunit is used for receiving the payment fee information sent by the cloud server when the free trial date comes;
and the second payment operation subunit is used for performing payment operation according to the payment fee information, and unlocking the locked encrypted file after payment is completed so as to continue to use the encrypted file.
Specifically, the cloud server downloads the encrypted piece file to the piece learning user, limits the free trial date of the encrypted piece file, locks the encrypted piece file when the free trial date comes, enables the piece learning user to be incapable of continuing to use the encrypted piece file, reminds the piece learning user to pay, and unlocks the encrypted piece file after the fact that the piece learning user pays the fee is determined, and enables the piece learning user to continue to use the encrypted piece file.
It should be noted that, when the terminal used by the piece learning user is not bound to the cloud server, the fee paid by the piece learning user may not be allocated to the terminal; when the terminal used by the piece learning user is bound with the cloud server, namely, when a cooperation relationship exists between a terminal manufacturer of the terminal used by the piece learning user and the cloud server, the cloud server settles the fee to the piece learning provider and the terminal manufacturer, the piece learning provider charges most of the fee according to the proportion of the piece learning price, the terminal manufacturer of the piece learning user charges a certain fee according to the proportion of the piece learning price, and the fee distribution proportion of the piece learning provider and the terminal manufacturer is specifically determined according to actual needs.
The pricing method of the learning object can refer to the corresponding parts of the above embodiments, and details are not repeated here.
Finally, it should also be noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (11)

1. A management method of software is applied to a cloud server, and comprises the following steps:
receiving a study piece downloading request sent by a study piece user, wherein the study piece downloading request carries relevant information of a study piece to be downloaded, and the study piece user is a registered user with a study piece downloading permission from the cloud server;
searching a piece of study file corresponding to the piece of study downloading request from a prestored piece of study file, wherein the piece of study file is digitally signed by a private key of a piece of study provider before being uploaded to the cloud server by a corresponding piece of study provider, and the piece of study provider is a registered user with the authority of uploading the piece of study from the cloud server;
encrypting the digitally signed document file by using the public key of the document user;
downloading the encrypted piece file to a terminal used by the piece learning user, decrypting the encrypted piece learning file by the terminal by adopting a private key of the piece learning user, and performing digital signature verification on the decrypted piece learning file by using the acquired public key of the piece learning provider, wherein the piece learning file passing the digital signature verification is the piece to be downloaded;
wherein, the downloading the encrypted file to the terminal used by the user of the file specifically comprises:
sending payment fee information to the student user;
after the fact that the payment of the student is completed is confirmed, downloading the encrypted student file to the terminal;
or the like, or, alternatively,
sending a free trial date of the encrypted file to the file user, and downloading the encrypted file to the terminal;
when the free trial date comes, sending payment fee information to the student user, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file;
and after the fact that the payment of the student is completed is determined, unlocking the encrypted student file.
2. The management method according to claim 1, wherein the school file comprises: the to-be-downloaded piece and the copyright license information.
3. The management method according to claim 1, wherein the process of the terminal acquiring the public key of the chemical provider comprises:
when the terminal and the cloud server do not establish binding in advance, the public key of the student provider is sent to the terminal by the cloud server when an encrypted file is downloaded to the terminal;
or the like, or, alternatively,
when the binding connection is pre-established between the terminal and the cloud server, the public key of the student provider is actively acquired from the cloud server after the encrypted file is downloaded by the terminal.
4. The management method according to claim 1, wherein the registration process of the student user comprises:
receiving a first registration request sent by the student user, where the first registration request carries first registration information of the student user, and the first registration information includes: a registered account number of the piece of study user;
registering the student piece user by utilizing the first registration information carried in the first registration request, and generating a public and private key pair of the student piece user after the registration is finished;
and sending the private key of the student user to the student user, and storing the public key of the student user.
5. The management method according to claim 1, wherein the registration process of the school piece provider includes:
receiving a second registration request sent by the school piece provider, where the second registration request carries second registration information of the school piece provider, and the second registration information includes: a registered account number of the pickup provider;
registering the school things provider by using the second registration information carried in the second registration request, and generating a public and private key pair of the school things provider after the registration is finished;
and sending the private key of the school piece provider to the school piece provider, and storing the public key of the school piece provider.
6. A management method of software is applied to a terminal used by a student, wherein the student is a registered user with the authority of downloading the student from a cloud server, and the management method comprises the following steps:
sending a request for downloading the learning piece to the cloud server, wherein the request for downloading the learning piece carries the related information of the learning piece to be downloaded;
acquiring an encrypted piece file downloaded by the cloud server, wherein the encrypted piece file is obtained by the cloud server searching a piece file corresponding to the piece downloading request from a pre-stored piece file, the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by a corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of a piece user, and the piece provider is a registered user having the authority of uploading the piece from the cloud server;
decrypting the encrypted file of the piece of study by using the private key of the user of the piece of study;
acquiring a public key of the student provider;
carrying out digital signature verification on the decrypted piece of study file by adopting the public key of the piece of study provider, wherein the piece of study file passing the digital signature verification is the piece of study to be downloaded;
wherein, the obtaining of the encrypted file downloaded by the cloud server specifically includes:
receiving payment expense information sent by the cloud server;
paying operation is carried out according to the payment expense information, and after payment is finished, an encrypted file downloaded by the cloud server is obtained;
or the like, or, alternatively,
receiving a free trial date of the learning file sent by the cloud server and the downloaded encrypted learning file;
receiving payment cost information sent by the cloud server when the free trial date comes;
and carrying out payment operation according to the payment expense information, and unlocking the locked encrypted file after payment is finished so as to continue using the encrypted file.
7. The management method according to claim 6, wherein the process of obtaining the public key of the chemical provider comprises:
when the terminal and the cloud server do not establish the association connection in advance, the public key of the student provider is sent to the terminal by the cloud server when an encrypted file is downloaded to the terminal;
or the like, or, alternatively,
when the terminal and the cloud server establish the association connection in advance, the public key of the student provider is actively acquired from the cloud server after the terminal downloads the encrypted file.
8. A cloud server, comprising:
the system comprises a first receiving unit, a second receiving unit and a third receiving unit, wherein the first receiving unit is used for receiving a learning piece downloading request sent by a learning piece user, the learning piece downloading request carries relevant information of a learning piece to be downloaded, and the learning piece user is a registered user with the learning piece downloading permission from the cloud server;
a learning piece searching unit, configured to search a learning piece file corresponding to the request for downloading the learning piece from a pre-stored learning piece file, where the learning piece file is digitally signed by a private key of a corresponding learning piece provider before being uploaded to the cloud server by the learning piece provider, and the learning piece provider is a registered user having a right to upload the learning piece from the cloud server;
the encryption unit is used for encrypting the digital signed student file by adopting the public key of the student user;
the first downloading unit is used for downloading the encrypted piece file to a terminal used by the piece learning user, the terminal decrypts the encrypted piece file by adopting a private key of the piece learning user and performs digital signature verification on the decrypted piece learning file by using the acquired public key of the piece learning provider, wherein the piece learning file passing the digital signature verification is the piece to be downloaded;
wherein the first downloading unit includes:
the first payment sending subunit is used for sending payment information to the student user;
the first downloading subunit is used for downloading the encrypted file to the terminal after determining that the payment of the file user is completed;
or the like, or, alternatively,
the second downloading subunit is used for sending the free trial date of the encrypted file to the file user and downloading the encrypted file to the terminal;
the second payment sending subunit is used for sending payment information to the student user when the free trial date comes, and locking the encrypted student file to ensure that the student user cannot continue to use the encrypted student file;
and the unlocking subunit is used for unlocking the encrypted file of the student after determining that the payment of the student is completed.
9. The cloud server of claim 8, wherein said study file comprises: the to-be-downloaded piece and the copyright license information.
10. A terminal, wherein the terminal is a terminal used by a student, and the student is a registered user with the right to download the student from a cloud server, the terminal comprising:
the request sending unit is used for sending a request for downloading the learning object to the cloud server, wherein the request for downloading the learning object carries the related information of the learning object to be downloaded;
a first obtaining unit, configured to obtain an encrypted piece file downloaded by the cloud server, where the encrypted piece file is a piece file that is searched by the cloud server from pre-stored piece files and corresponds to the piece downloading request, the piece file is digitally signed by using a private key of a piece provider before being uploaded to the cloud server by the corresponding piece provider, and the digitally signed piece file is encrypted by using a public key of the piece user, and the piece provider is a registered user having a right to upload a piece from the cloud server;
the decryption unit is used for decrypting the encrypted file of the piece of study by adopting a private key of the user of the piece of study;
a second obtaining unit, configured to obtain a public key of the pickup provider;
the verification unit is used for performing digital signature verification on the decrypted piece of study file by adopting the public key of the piece of study provider, wherein the piece of study file passing the digital signature verification is the piece of study to be downloaded;
wherein the first acquisition unit includes:
the first receiving subunit is used for receiving payment fee information sent by the cloud server;
the first payment operation subunit is used for performing payment operation according to the payment fee information and acquiring the encrypted file downloaded by the cloud server after payment is completed;
or the like, or, alternatively,
the second receiving subunit is configured to receive a free trial date of the pickup file sent by the cloud server and the downloaded encrypted pickup file;
the third receiving subunit is used for receiving the payment fee information sent by the cloud server when the free trial date comes;
and the second payment operation subunit is used for performing payment operation according to the payment fee information, and unlocking the locked encrypted file after payment is completed so as to continue to use the encrypted file.
11. The terminal of claim 10, wherein the second obtaining unit comprises:
the first acquisition subunit is used for sending a public key of the student provider to the terminal when the cloud server downloads an encrypted file to the terminal when the terminal and the cloud server do not establish the association connection in advance;
and the combination of (a) and (b),
and the second acquisition subunit is used for actively acquiring the public key of the student part provider from the cloud server after the terminal downloads the encrypted file when the terminal and the cloud server establish the association connection in advance.
CN201810255293.6A 2018-03-23 2018-03-23 Software management method, cloud server and terminal Active CN108418833B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810255293.6A CN108418833B (en) 2018-03-23 2018-03-23 Software management method, cloud server and terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810255293.6A CN108418833B (en) 2018-03-23 2018-03-23 Software management method, cloud server and terminal

Publications (2)

Publication Number Publication Date
CN108418833A CN108418833A (en) 2018-08-17
CN108418833B true CN108418833B (en) 2022-01-07

Family

ID=63132428

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810255293.6A Active CN108418833B (en) 2018-03-23 2018-03-23 Software management method, cloud server and terminal

Country Status (1)

Country Link
CN (1) CN108418833B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110149210A (en) * 2019-04-20 2019-08-20 深圳市元征科技股份有限公司 A kind of data transmission method and device
CN111125645B (en) * 2019-11-15 2023-05-16 至本医疗科技(上海)有限公司 Method, system, device, computer equipment and medium for processing execution program
CN114915623B (en) * 2022-07-11 2022-11-22 万商云集(成都)科技股份有限公司 File synchronization method and system
CN116542136A (en) * 2023-04-13 2023-08-04 南京大学 Universal method and device for searching and multiplexing learning objects

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101281575A (en) * 2008-05-14 2008-10-08 北京深思洛克数据保护中心 Method for protecting software
CN101409618A (en) * 2008-11-24 2009-04-15 农革 Method for encrypting and deciphering multi-reader document
CN101571900A (en) * 2009-06-01 2009-11-04 薛明 Software copyright protection method, device and system
CN102271130A (en) * 2011-07-22 2011-12-07 四川长虹电器股份有限公司 Method for safely delivering and distributing software
CN103532712A (en) * 2012-07-04 2014-01-22 侯光敏 Digital media file protection method, system and client
CN103731395A (en) * 2012-10-10 2014-04-16 中兴通讯股份有限公司 Processing method and system for files

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101247605A (en) * 2008-03-25 2008-08-20 中兴通讯股份有限公司 Short information enciphering and endorsement method, mobile terminal and short information ciphering system
US20170039487A1 (en) * 2014-04-11 2017-02-09 Hitachi, Ltd. Support vector machine learning system and support vector machine learning method

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101281575A (en) * 2008-05-14 2008-10-08 北京深思洛克数据保护中心 Method for protecting software
CN101409618A (en) * 2008-11-24 2009-04-15 农革 Method for encrypting and deciphering multi-reader document
CN101571900A (en) * 2009-06-01 2009-11-04 薛明 Software copyright protection method, device and system
CN102271130A (en) * 2011-07-22 2011-12-07 四川长虹电器股份有限公司 Method for safely delivering and distributing software
CN103532712A (en) * 2012-07-04 2014-01-22 侯光敏 Digital media file protection method, system and client
CN103731395A (en) * 2012-10-10 2014-04-16 中兴通讯股份有限公司 Processing method and system for files
CN103731395B (en) * 2012-10-10 2017-11-14 中兴通讯股份有限公司 The processing method and system of file

Also Published As

Publication number Publication date
CN108418833A (en) 2018-08-17

Similar Documents

Publication Publication Date Title
CN108418833B (en) Software management method, cloud server and terminal
US7099479B1 (en) Information transmission system, transmitter, and transmission method as well as information reception system, receiver and reception method
US11645369B2 (en) Blockchain digital rights management streaming library
TWI413908B (en) Flexible licensing architecture for licensing digital application
JP3996532B2 (en) Safe transaction management method and system
US8655785B2 (en) Computer data product license installation / update confirmation
CN102073826B (en) Utilize the system and method for the digital copyright management of lightweight digital watermark adding component
KR100796583B1 (en) System, method and storage medium for license management
US20060168580A1 (en) Software-management system, recording medium, and information-processing device
US20080262968A1 (en) Software licensing control via mobile devices
US20110196793A1 (en) Generic feature licensing framework
WO2011137067A1 (en) Application products with in-application subsequent feature access using network-based distribution system
CN102737200A (en) Software activation using digital licenses
TW200917084A (en) Metered pay-as-you-go computing experience
CN102622559B (en) A kind of navigation software user authorization and system
US20080134319A1 (en) License verification
US20130185197A1 (en) Method and apparatus for manufacturer revenue sharing with suppliers by licensing features to customers
US20140215220A1 (en) Application distribution system and method
US20130174278A1 (en) Digital rights management (drm) service control method, apparatus, and system
CN108140074A (en) Specific feature permission is applied in management
WO2007074548A1 (en) Copyright management system, key management server used therein, and client terminal
KR20060020629A (en) Valuating rights for 2nd hand trade
EP2618293A2 (en) Feature licensing framework for third party feature credit management
US20180107997A1 (en) Managing software licensing cost information
CN109558703A (en) A kind of copyright managing method, server and user terminal

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20221108

Address after: 100083 room 101-105, 1 / F, Chuangda building, No.9 Qinghua East Road, Haidian District, Beijing (Dongsheng District)

Patentee after: Thunder Software Technology Co.,Ltd.

Patentee after: CHANGSUO SOFTWARE TECHNOLOGY (SHANGHAI) CO.,LTD.

Address before: 100191, 4 floor, Thai Xiang business building, 1 Longxiang Road, Haidian District, Beijing.

Patentee before: Thunder Software Technology Co.,Ltd.