CN109165483A - A method of it prevents around cloud platform licensing term - Google Patents
A method of it prevents around cloud platform licensing term Download PDFInfo
- Publication number
- CN109165483A CN109165483A CN201810930257.5A CN201810930257A CN109165483A CN 109165483 A CN109165483 A CN 109165483A CN 201810930257 A CN201810930257 A CN 201810930257A CN 109165483 A CN109165483 A CN 109165483A
- Authority
- CN
- China
- Prior art keywords
- time
- operation duration
- current time
- public network
- list
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
- 238000000034 method Methods 0.000 title claims abstract description 15
- 230000001360 synchronised effect Effects 0.000 claims abstract description 17
- 238000013475 authorization Methods 0.000 claims abstract description 13
- 230000004913 activation Effects 0.000 claims description 20
- 238000012795 verification Methods 0.000 claims description 5
- 238000012360 testing method Methods 0.000 claims description 2
- 238000012986 modification Methods 0.000 abstract description 2
- 230000004048 modification Effects 0.000 abstract description 2
- 238000004519 manufacturing process Methods 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/105—Arrangements for software license management or administration, e.g. for managing licenses at corporate level
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2137—Time limited access, e.g. to a computer or data
Abstract
The present invention relates to a kind of method prevented around cloud platform licensing term.The list of disk operation duration calculates separately out possible current time with the disk operation duration list recorded when disk operation duration, synchronous public network in certificate in cloud platform authentication service acquisition system of the present invention, and takes the biggish time as possible current time A;According to authentication service operation duration respectively in certificate activationary time, synchronous public network when service operation time length comparison calculate may current time, and take biggish time as may current time B;Whether the maximum date is current date in possibility the current time A and B that acquisition current time in system and above-mentioned two step are calculated, then expired with the expired time multilevel iudge authorization in certificate.The present invention solves the problems, such as to prevent user from passing through modification system time to realize around cloud platform licensing term;It can be applied in distributed soft ware authorization time limit control.
Description
Technical field
The present invention relates to soft ware authorization control technology field, especially a kind of side prevented around cloud platform licensing term
Method.
Background technique
With the development of virtualization, more and more cloud platforms are born, and cloud platform product software authorization protection aspect
Face more and more problems.General cloud platform product in terms of the soft ware authorization all can when in use between, cpu scale, virtual machine
Scale, physical machine scale and functional module etc. make limitation, to reach in the form of a variety of sale of a set of product.And use the time
Limitation control it is good with it is bad, be related to the sales achievement of enterprise to a certain extent.And in terms of the service life of control software,
The variety of problems being hard to avoid is faced again:
First is that user is easy for through modification system if only doing service life verifying by the current time of system
Time reaches the problem of around service life verifying;
Second is that calculating current time with the time of disk operation duration and activation, this theoretically most can be close to really
The method of current time;But the thing of production environment disk failures happens occasionally, and most of production environment system disks can be done
raid;And different raid manufacturers provides different tool and function and obtains disc information, some cannot all get raid
Disk operation duration and Disk Serial Number in disk group etc.;
Third is that the server of certification is possible to be shut down for an extended period of time, this period disk operation duration and service operation
Duration all record less than.
In order to calculate closer to actual time, protection cloud platform software is authorized using the time, is needed a kind of from disk fortune
The various dimensions references such as row duration list, service operation duration list, synchronous public network time, the side for calculating maximum possible current time
Formula.
Summary of the invention
Present invention solves the technical problem that being to provide a kind of method prevented around cloud platform licensing term, meet different
The reference of a variety of difference current times prevents cloud platform software from bypassing to calculate closer to actual time in production environment
Service life authorization.
The technical solution that the present invention solves above-mentioned technical problem is:
The method includes the following steps:
Step 1: the activationary time of acquisition cloud platform identification service system, mainboard sequence number, disk operation duration column first
Table, activation code etc. call public network activation service to be activated as parameter;
Step 2: activation service verification platform activationary time and activation service system current time difference whether 5 minutes with
It is interior, whether verifying activation code effective etc., and by activationary time, mainboard sequence number, the list of disk operation duration, expired time, rule
The information such as mould limitation by RSA private key encryption and return to cloud platform authentication service;
Step 3: cloud platform authentication service according to RSA public key decryptions certificate information and periodically carries out certification authentication;
Step 4: in acquisition system the list of disk operation duration with recorded when disk operation duration, synchronous public network in certificate
Disk operation duration list calculates separately out possible current time, and takes the biggish time as possible current time A;
Step 5: according to authentication service operation duration respectively in certificate activationary time, synchronous public network when service operation when
It is long relatively to calculate possible current time, and take the biggish time as possible current time B;
Step 6: obtaining maximum in possibility the current time A and B that current time in system and above-mentioned two step are calculated
Date be current date, then it is whether expired with the expired time multilevel iudge authorization in certificate.
2, according to the method described in claim 1, it is characterized by: the disk operation duration list, format are
[{"diskSn":"XXXXX":"hourOnPower":1556}];
The authentication service operation duration, when referring to the operation for the record component that periodically adds up after platform authentication service starts
It is long;
The disk operation duration list recorded when the synchronous public network refers to the authentication service Timing Synchronization public network time, together
Synchronizing time point at that time and system disk operation duration list association are recorded after walking successfully, with further update the system most probable
Current time;
Service operation duration when the synchronous public network refers to the authentication service Timing Synchronization public network time, synchronizes successfully postscript
The synchronizing time point of record at that time is associated with authentication service operation duration, with the most probable current time of further update the system.
The expired time is by effectively authorizing number of days to calculate the authorization obtained corresponding to activationary time and activation code
Time expiry.
The present invention calculates maximum possible current time with calibration by the reference of various dimensions, prevents user by repairing
Change the current time in system to reach the verification for bypassing and authorizing using the time, protects the right to use of product well.
Detailed description of the invention
The following further describes the present invention with reference to the drawings:
Fig. 1 is the method for the present invention flow chart;
Fig. 2 is invention software structural block diagram.
Specific embodiment
As shown in Figure 1, 2, the present invention obtains the activationary time of cloud platform identification service system, mainboard sequence number, magnetic first
The list of disk operation duration, activation code etc. call public network activation service to be activated as parameter:
It then activates service verification platform activationary time with activation service system current time whether within 5 minutes, test
It is whether effective etc. to demonstrate,prove activation code, and by activationary time, mainboard sequence number, the list of disk operation duration, expired time, size limit
Etc. information RSA private key encryption and return to cloud platform authentication service into crossing:
The system time of // activation client was differed with server-side no more than 5 minutes
Then, cloud platform authentication service according to RSA public key decryptions certificate information and periodically carries out certification authentication, certificate content
It is as follows after decryption:
ActiveCode=xxxxxxxxxxxxxxx
ExpireDate=2018-10-04
Mac=32:5b:ab:9e:69:13
DiskSerial=null
VmScale=120
CoreScale=120
CpuScale=12
ActiveTime=2018-07-02 23:37:53
BaseboardSn=ZM14AS008968
DiskInfos=[{ " diskSn ": " S0M2VK1B ", " hoursOnPower ": 15625 }]
Then, in acquisition system the list of disk operation duration with remember when disk operation duration, synchronous public network time in certificate
The disk operation duration list of record calculates separately out possible current time, and take biggish time as may be current when
Between:
The time syncTime recorded when according to the synchronous public network time and system disk operation duration list at that time
SyncDiskInfos calculates possible maximum current time;
According to authentication service operation duration respectively in certificate activationary time, the synchronous public network time when service operation duration
Possible current time is calculated separately out, and takes the biggish time as possible current time:
The time syncTime and service operation duration syncRunTime recorded when according to the synchronous public network time
Finally, the possibility current time calculated according to current time in system and above-mentioned steps, chooses maximum possibility
Current time be true current time, then compared with the expired time in certificate come judge authorization it is whether expired.
Whether verification platform activationary time of the present invention and activation service system current time difference are to prevent within 5 minutes
The time that activation starts is had modified when activation, to extend the licensing term of platform;
The present invention calculates possible current time by the list of disk runing time, and server disk is possible to damage
And change, so to obtain the operation duration of multiple disks to refer to.Possible work as is calculated by authentication service operation duration
The preceding time, be because server disk has been possible to be raid, and have no idea to get disk operation duration and
Without other can obtain disk operation duration disks exist, this be can only Reference Services operation duration it is closer to calculate
True current time.
The synchronous public network time simultaneously records with disk operation duration list corresponding relationship and the corresponding pass with service operation duration
System, be the relationship in order to preferably calibrate each operation duration Yu recorded time because server be possible to closing and disk not
Operation, same authentication service may also close, and the operation duration of activationary time and disk, service operation duration calculation is caused to come out
Time be possible to have certain gap with the true time.
Claims (4)
1. a kind of method prevented around cloud platform licensing term, it is characterised in that: the method includes the following steps:
Step 1: obtaining the activationary time of cloud platform identification service system first, mainboard sequence number, the list of disk operation duration, swash
Code living etc. calls public network activation service to be activated as parameter;
Step 2: activation service verification platform activationary time with activate service system current time difference whether within 5 minutes, test
It is whether effective etc. to demonstrate,prove activation code, and by activationary time, mainboard sequence number, the list of disk operation duration, expired time, size limit
Etc. information by RSA private key encryption and returning to cloud platform authentication service;
Step 3: cloud platform authentication service according to RSA public key decryptions certificate information and periodically carries out certification authentication;
Step 4: the list of disk operation duration and the disk recorded when disk operation duration, synchronous public network in certificate in acquisition system
Operation duration list calculates separately out possible current time, and takes the biggish time as possible current time A;
Step 5: according to authentication service operation duration respectively in certificate activationary time, synchronous public network when service operation time length ratio
Possible current time is relatively calculated, and takes the biggish time as possible current time B;
Step 6: obtaining maximum day in possibility the current time A and B that current time in system and above-mentioned two step are calculated
Whether the phase is current date, then expired with the expired time multilevel iudge authorization in certificate.
2. according to the method described in claim 1, it is characterized by: the disk operation duration list, format are
[{ " diskSn ": " XXXXX ": " hourOnPower ": 1556 }];
The authentication service operation duration refers to the operation duration for the record component that periodically adds up after platform authentication service starts;
The disk operation duration list recorded when the synchronous public network, refers to the authentication service Timing Synchronization public network time, it is synchronous at
Synchronizing time point at that time and system disk operation duration list association are recorded after function, are worked as so that further update the system is most probable
The preceding time;
Service operation duration when the synchronous public network refers to the authentication service Timing Synchronization public network time, synchronizes successfully to record afterwards and work as
When synchronizing time point be associated with authentication service operation duration, with the most probable current time of further update the system.
3. according to the method described in claim 1, it is characterized by: the expired time is by activationary time and activation code
Corresponding effective authorization number of days calculates the authorization time expiry obtained.
4. according to the method described in claim 2, it is characterized by: the expired time is by activationary time and activation code
Corresponding effective authorization number of days calculates the authorization time expiry obtained.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810930257.5A CN109165483A (en) | 2018-08-15 | 2018-08-15 | A method of it prevents around cloud platform licensing term |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810930257.5A CN109165483A (en) | 2018-08-15 | 2018-08-15 | A method of it prevents around cloud platform licensing term |
Publications (1)
Publication Number | Publication Date |
---|---|
CN109165483A true CN109165483A (en) | 2019-01-08 |
Family
ID=64895858
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810930257.5A Withdrawn CN109165483A (en) | 2018-08-15 | 2018-08-15 | A method of it prevents around cloud platform licensing term |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109165483A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110008659A (en) * | 2019-03-29 | 2019-07-12 | 深圳华锐金融技术股份有限公司 | Outline management method, apparatus, computer equipment and the storage medium of software license |
CN110990824A (en) * | 2019-11-19 | 2020-04-10 | 江苏理工学院 | Method for remotely controlling service life of non-networked machine |
CN111431888A (en) * | 2020-03-19 | 2020-07-17 | 深圳市道旅旅游科技股份有限公司 | Method, device, equipment and storage medium for shielding key information |
EP4080385A1 (en) * | 2021-04-21 | 2022-10-26 | Siemens Aktiengesellschaft | Determination of a validity of a usage authorization of a computer-implemented product |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101059825A (en) * | 2006-04-18 | 2007-10-24 | 华为技术有限公司 | Method and system for keeping digital copyright management time synchronization |
CN105227323A (en) * | 2015-11-03 | 2016-01-06 | 北京邮电大学 | A kind of mobile digital copyright protection permission method |
CN105553668A (en) * | 2015-12-21 | 2016-05-04 | 北京飞杰信息技术有限公司 | Method and system for verifying user authorization certificate through verifying authorization time |
CN107341368A (en) * | 2017-06-06 | 2017-11-10 | 广州视源电子科技股份有限公司 | Licensing effective time method of calibration and device |
-
2018
- 2018-08-15 CN CN201810930257.5A patent/CN109165483A/en not_active Withdrawn
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101059825A (en) * | 2006-04-18 | 2007-10-24 | 华为技术有限公司 | Method and system for keeping digital copyright management time synchronization |
CN105227323A (en) * | 2015-11-03 | 2016-01-06 | 北京邮电大学 | A kind of mobile digital copyright protection permission method |
CN105553668A (en) * | 2015-12-21 | 2016-05-04 | 北京飞杰信息技术有限公司 | Method and system for verifying user authorization certificate through verifying authorization time |
CN107341368A (en) * | 2017-06-06 | 2017-11-10 | 广州视源电子科技股份有限公司 | Licensing effective time method of calibration and device |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110008659A (en) * | 2019-03-29 | 2019-07-12 | 深圳华锐金融技术股份有限公司 | Outline management method, apparatus, computer equipment and the storage medium of software license |
CN110008659B (en) * | 2019-03-29 | 2021-03-23 | 深圳华锐金融技术股份有限公司 | Software license offline management method and device, computer equipment and storage medium |
CN110990824A (en) * | 2019-11-19 | 2020-04-10 | 江苏理工学院 | Method for remotely controlling service life of non-networked machine |
CN111431888A (en) * | 2020-03-19 | 2020-07-17 | 深圳市道旅旅游科技股份有限公司 | Method, device, equipment and storage medium for shielding key information |
EP4080385A1 (en) * | 2021-04-21 | 2022-10-26 | Siemens Aktiengesellschaft | Determination of a validity of a usage authorization of a computer-implemented product |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109165483A (en) | A method of it prevents around cloud platform licensing term | |
CN103795692B (en) | Open authorization method, system and certification authority server | |
CN102300182B (en) | Short-message-based authentication method, system and device | |
CN108769154B (en) | Data storage method based on directed acyclic graph and distributed account book | |
US20160267493A1 (en) | Product anti-counterfeiting method, apparatus and system | |
EP3779760B1 (en) | Blockchain-based data processing method and apparatus, and electronic device | |
CN102484638B (en) | Layered protection and validation of identity data delivered online via multiple intermediate clients | |
CN108418795A (en) | Data access method, device, system and the computer-readable medium of transregional piece of chain | |
CN101458946B (en) | Information processing device, disc, information processing method, and program | |
TW201112656A (en) | Secure time functionality for a wireless device | |
CN104484620B (en) | A method of false sales volume and inventory are avoided in pin sales management cloud system fastly | |
WO2005029746A3 (en) | System and method providing disconnected authentication | |
CN104537293A (en) | Authentication device and system | |
CN102622559B (en) | A kind of navigation software user authorization and system | |
US20140157368A1 (en) | Software authentication | |
EP3552131A1 (en) | Password security | |
CN108696356A (en) | A kind of digital certificate delet method, apparatus and system based on block chain | |
CN105631361A (en) | Application program channel source identification method and device | |
US11546316B1 (en) | System and method for receiving information among computer systems without enabling log ins if the user identifiers are compromised | |
CN104680041A (en) | Off-line software license validation method | |
CN110032835A (en) | A kind of soft encryption technology preventing software duplication and migration | |
CN114039733B (en) | Certificate storage service transfer method, device and equipment for alliance chains | |
US10042989B2 (en) | Device activation | |
CN106599621A (en) | Permission activation method and apparatus | |
CN102752308A (en) | Network-based digital certificate comprehensive service providing system and implementation method thereof |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 19 / F, Cloud Computing Center, Chinese Academy of Sciences, No.1 Kehui Road, Songshanhu high tech Industrial Development Zone, Dongguan City, Guangdong Province, 523000 Applicant after: G-CLOUD TECHNOLOGY Co.,Ltd. Address before: 523808 No. 14 Building, Songke Garden, Songshan Lake Science and Technology Industrial Park, Dongguan City, Guangdong Province Applicant before: G-CLOUD TECHNOLOGY Co.,Ltd. |
|
CB02 | Change of applicant information | ||
WW01 | Invention patent application withdrawn after publication |
Application publication date: 20190108 |
|
WW01 | Invention patent application withdrawn after publication |