JP2001344097A - System for preventing illegal use of program, device and method for the same and recording medium with illegal use preventing program recorded - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a system for preventing the illegal use of software such as the copy of software. SOLUTION: A file in which a period for which the use of software is valid or the like is enciphered and recorded is installed in the hard disk of a client device, and the cipher is decoded at the time of judging the start of the software (S330), and the validity is judged (S331, S333) so that the validity/invalidity of the start of the software can be decided.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a control for preventing unauthorized use of a program for a certain period or for a user who has been permitted to use the program for a limited period of time. The present invention relates to an unauthorized use prevention system, an unauthorized use prevention device, an unauthorized use prevention method, and a recording medium on which an unauthorized use prevention program is recorded.

[0002]

2. Description of the Related Art As a method of permitting use of a program for a limited period, there is a method of storing a use period in a system area of a personal computer to be used. In this method, the expiration date recorded in the system area is compared with a system clock operating inside the personal computer to determine whether the program can be started.

Further, there is a method of connecting to a server computer at the time of starting or operating a program and managing the right to use a client program at the server based on a technique of transmitting and receiving data between a plurality of computers. In this method, the user-specific information is transmitted to the server computer when the program is started, it is determined whether or not the user is a licensed user inside the server computer, and whether the program can be started is notified to the program on the personal computer via a network. Based on the result, it is determined whether the program on the personal computer is started.

[0004]

In the conventional method of storing the expiration date in the system area of the personal computer used, there is often no means for updating the expiration date when the expiration date is reached. In addition, the method of re-installing the program itself has enabled use contrary to the intention of the program right holder.

Further, in order to compare the expiration date with the system clock operating inside the personal computer, it was possible to easily remove the restriction on the expiration date of the program by operating the clock.

On the other hand, the method of managing the right to use the client program on the server side by always connecting to the server computer is based on the principle that the line is always connected at the time of use or when the program is started. There was a problem that costs of the side occurred. In particular, it has been difficult to distribute the program in such a manner that the program can be freely used for a certain period of time and the use of the program is refused if the period is exceeded.

The present invention has been made to solve the above problems, and provides a system, an apparatus, a method, and a recording medium on which an unauthorized use prevention program is recorded, which can surely prevent unauthorized use of the program. The purpose is to do.

[0008]

According to the present invention, there is provided an apparatus for preventing unauthorized use of a program, comprising: storage means for storing a start date and time of a program operating on a computer; And means for deciding whether or not to activate the program according to the comparison result of the comparing means.

[0009] In order to determine whether the program can be started or not based on the comparison result between the current start and the previous start of the program, the user needs to use the program again after the license expiration date has expired. Even if you operate the date and time of the computer temporarily, the program cannot be started. As a result, a program license that can prevent unauthorized use becomes possible. Further, since processing can be performed by the client alone without connecting to a line, a program license system with a simple configuration can be provided.

Preferably, the storage means further stores a usable period during which the program can be used, and compares whether or not the current activation time is within the usable period.
The information processing apparatus further includes a comparing unit, and the determining unit determines whether to start the program according to the comparison result of the first and second comparing units.

In order to determine whether the program can be used in consideration of the usable period in which the program can be used,
Unauthorized use of the program can be more reliably prevented.

At the time of starting the program and the usable period, the program may be encrypted and stored. In this way, the unauthorized use of the program can be more reliably prevented.

[0013] Preferably, the usable period of the program is stored in the storage means when the program is first introduced into the computer. The introduction of the program may be performed via a network, FD, MO, CD-R
It may be performed using a predetermined recording medium such as OM.

The usable period may be renewable. In another aspect of the present invention, a program fraud prevention system uses a program in a client connected to a server via a network in accordance with a license from the server via the network. The client receives the start permission information of the program from the server, and compares the storage unit storing the start date and time of the program based on the start permission information with the current start time of the program and the previous start date stored in the storage unit. It includes a first comparing means and a determining means for determining whether or not to activate the program according to a comparison result of the first comparing means. The server is
The program license information B is stored together with the client information.

As a result, it is possible to provide a system that permits use while managing user information on the server. Preferably, this system can be used, for example, for a membership network type educational service providing service. It is now possible to give customers who are entitled to receive the service during the period of membership as a license to use the program running on a personal computer through the provision of a software expiration date setting file using an encrypted file telephone line etc. Become.

In still another aspect of the present invention, a method for preventing unauthorized use of a program compares the step of storing the start date and time of the program operating on the computer with the current start time and the previous start date of the program. And a step of determining whether to activate the program according to the comparison result.

[0017] In still another aspect of the present invention, the recording medium stores the start date and time of the first program running on the computer in the computer,
A second program for executing a step of comparing the current start time and the previous start time of the first program with each other and a step of determining whether or not the first program can be started based on the comparison result is recorded.

The second program may be introduced into a computer via a network without being recorded on a recording medium.

[0019]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS An embodiment of the present invention will be described below with reference to the drawings.

FIG. 1 is a schematic diagram showing an overall configuration of a server client system to which a system for preventing unauthorized use of a program according to the present invention is applied. Referring to FIG.
The system for preventing unauthorized use of a program according to the present invention comprises:
A server 100 for storing a predetermined program;
00 is used between the client computer 200a and the client personal computer 200a connected via the network 150. A plurality of client personal computers 200b and 200c may be connected to the server 100 via the network 150. The network 150 may be the Internet.

FIG. 2 is a block diagram showing the overall configuration of the client personal computer 200. Client PC 2
00 is a C that controls the entire client personal computer 200
A memory 10 connected to the PU 10 and the CPU 10 for storing predetermined information; an interface 12 connected to the CPU 10 for connecting a plurality of external devices; and a network 150 connected to the interface 12
A keyboard 13 for inputting and outputting data, a display 15 such as a CRT, and a recording medium drive 16 for driving a recording medium such as a floppy (registered trademark) disk or CD-ROM. , A hard disk 17.

It should be noted that the program to which the unauthorized use prevention system according to the present invention is applied is not only introduced via the network 150 as shown in FIG. 1, but also a program such as a floppy disk, CD-ROM or MO. It may be introduced into the client personal computer 200 via a simple recording medium.

FIG. 3 is a schematic diagram showing a main part of a storage area of the hard disk 17 of the client personal computer 200.
Referring to FIG. 3, the storage area of the hard disk 17 includes:
A machine-specific system storage area (WIN), which is an area common to systems existing on the client personal computer 200.
A registry 21 if the personal computer uses DOWS (registered trademark) as an OS (Operating System), and a memory area 22 specified by an address recorded in the system storage area 21
And The system storage area 21 cannot be normally copied by a user.

In the present invention, for example, the server 10
When the program is introduced to the client computer 200 by downloading the program from 0 to the client computer 200 via the network 150, first, an installation application for starting the program is started, and predetermined information is stored in the system storage area 21. Then, the application main body is stored in the memory area 22.

The system storage area 21 stores installation destination information A and license information B as predetermined information. Here, the installation destination information A indicates the storage destination directory information of the program. The license information B includes the initial license period, user identification information, license identification information, and the like, and is license information B recorded in the system storage area 21 and given at the time of first installation.

The license period information C stored in the memory area 22 is information relating to the validity period of the program stored in the storage area specified by the installation destination information A, and the boot history information D is specified by the installation destination information A. This is information related to the activation history of the program recorded in the storage area. These pieces of information are set in order as shown in FIG.

The user management information E including user identification information, license grant history information and the like is recorded in a storage area (not shown) of the server computer 100.

Next, specific processing will be described. First, the process of first installing a program on the user's client personal computer 200 will be described with reference to FIG. FIG. 4 is a flowchart showing a procedure for creating a license information B file at the time of initial installation.

Referring to FIG. 4, when the first installation application is started, first, the system storage area 21 is started.
It is checked whether there is a history of installation of the program to be licensed (step S10).
0, the following steps are omitted).

If there is an installed history (YES in S100), an error message is displayed on display unit 15.
(S101), and the installation application is terminated.

If there is no installed history (NO in S100), the storage directory in the storage area of the program to be licensed is recorded in the system storage area 21 (S110).

Next, whether or not connection with the server computer 100 is required when granting a program license is acquired from a value set in the installation program in advance (S120).

If it is determined in step S120 that the program is of a license grant classification requesting "acquire license information B file from network" (YES in S130), network 150 such as the Internet is used.
Is connected to a server computer 100 having a function of supplying a license via a network.

The license information B is stored in the system storage area 21.
(Additional information on the status of the installation, such as the fact that the license was granted by the installation application, the installation time, the license period, etc.) is written (S140).

If the program is not in the license grant category requesting "acquire license information B file from network" in S130 (N in S130
O), a processing execution routine for granting license information B, which is provided at the time of initial installation prepared in advance for the installation application, is called (S13).
1). Here, the license information B is the system storage area 2
1 and refers to an initial license period, user identification information, license identification information, and the like.

When the user information is input in S140, the user is connected to the server computer 100, and user information (name, address, e-mail address, member number, program serial number, etc.) for managing the customer on the server computer 100 side. (Arbitrary one) is received from the screen, and the input content is transmitted to the server computer 100.

When user information is transmitted from the client computer 200, the server computer 1
At 00, it is checked whether there is a history of a request for granting a license for the same program from the same user in the past by comparing with the value acquired at S140 (S100).
150).

The user information obtained in S150 is compared with the license conditions set for the program, and a determination is made as to whether to grant a license (S160). Examples of license conditions set for the program include, for example, disabling licensing if there are registration requests for the same program serial number from multiple names, or multiple times for the same e-mail address. It can be determined based on the distribution form of the program, the nature of the program, etc., such as not permitting installation.

If it is determined that the license cannot be granted (NO in S160), a message saying “unusable” is output to the display 15 of the client personal computer 200, and the process ends (S161).

When it is determined that a license can be granted (S
160 (YES), the license information data B to be stored in the system storage area 21 of the client PC 200 on the user side is created by an arbitrary logic, and the data is transmitted to the client PC 200 of the user (S).
170). This license information B is the same as that created in S131.

Examples of the arbitrary logic include encrypting and storing the user information acquired in S140, storing the license issuance time and license expiration information by encryption, and storing the serial number by encrypting.

Next, the user information obtained in S140 is processed, and data to be reflected in a database for user management is created (S171).

Next, the data created in S171 is written in the customer data management database of the server computer 100 (S172).

On the client PC 200 side, S1
License information B created by S31 or S170
Is recorded in the system storage area 21 (S180). S1
From the license information B file stored in step 80, license period information is created by encrypting date data, for example, using the technique described in "Example of Date Information Encryption Logic" described later (S181). .

The information created in S181 is recorded as a data file in the memory area 22 of the client personal computer 200 (S182).

Initially, the "start-time date information" data, which is the start history information D obtained by encrypting the date data, taking the technique described in the "example of logic for encrypting date information" described below as an example. It is created as a value (S183). For example, start time: current, end time: final license end date are encrypted.

The boot history information D created in S183 is recorded as a data file in the memory area 22 of the client personal computer 200 (S184).

Next, a specific example of encryption of date information will be described. Each data is represented as follows. Available date: (y1) year (m1) month (d1) day (Example: 200
February 1, 0), Expiration date: (y2) year (m2) month (d2) day (Example: 200
(April 1, 0), (y1) is converted to a binary number and assigned to the upper 12 bits (example: 011111010000). (m1)
Is converted to a binary number and assigned to the following 4 bits (example:
0111110100000010). Convert (d1) to binary and continue 5
Assign to a bit (example: 11111010000001000001). (y
2) is converted to a binary number and assigned to the following 12 bits (eg, 11111010000001000001011111010000). (m2) is 2
Convert to hexadecimal and assign to the next 4 bits (Example: 0111
110100000010000010111110100000100). (d2) is converted to a binary number and assigned to the following 5 bits (example: 01111101)
0000001000001011111010000010000001).

This value is returned to a decimal number (for example, 214762).
0987009), and multiply by any integer that can be managed by the headquarters (eg, multiplying 9112 by 19569122433626008).

Next, the processing at the time of updating the license information B will be described. FIG. 5 is a flowchart showing the processing content when updating the license information B, and FIG. 6 is a diagram showing the information flow at that time. Referring to FIGS. 5 and 6, client PC 200 retrieves the information stored in system storage area 21 and connects to server computer 100 to request update of license period information (S200). Here, the server computer 100 can perform user authentication from the information stored in the system storage area 21.

In the server computer 100, S20
The current license status is determined from the connection request requested in step 0, and input of user information is requested as needed (S201). For example, if the status of an update request is "regular user not registered,"
If it is determined that the program is of the "evaluation" version, an information input request for collecting information for registration as a new regular user can be made.

According to the information input request requested in S201, the client personal computer 200 inputs user information and transmits it to the server computer 100 (S201).
202).

The server computer 100 checks the user information recorded on the server computer 100 based on the acquired user information (license information) and edits information for determining whether or not a license is available (S2).
10).

The information created in S210 is compared with the license conditions set for the program, and a determination is made as to whether to grant a license (S211). Examples of license conditions set for the program include, for example, disabling licensing if there are registration requests for the same program serial number from multiple names, or multiple times for the same e-mail address. It can be determined based on the distribution form of the program, the nature of the program, etc., such as not permitting installation.

If it is determined that there is a problem with the license grant (NO in S211), a message indicating that the license cannot be granted is sent to the client PC 200 on the user side.
And terminates (S212).

If it is determined that there is no problem with the license provision (YES in S211), a license file for updating the license period is created, and the data is transmitted to the client personal computer 200.

The user receives the data for the license file for updating the license period (S230).

[Example of Logic of Date Information Encryption] "Start-up date information" data obtained by encrypting date data using the method described in the description as an example is created as an initial value (S2).
40). For example, start time: current, end time: license end date are encrypted.

The information that the license period has been updated is stored in the system storage area 21 and the memory area 22 by updating the license grant information B and the license period information C (S250).

The server computer 100 executes S250
The user management information E obtained in step (1) is processed to create data to be reflected in a database for user management (S260), and the data created in step S260 is written into the customer data management database of the server computer 100 (S270).

Next, a process of determining whether or not a license can be used when starting a program will be described. FIG. 7 is a flowchart showing a processing procedure for determining whether or not a license is available when the program is started, and FIG. 8 is a view showing a procedure for referring to specific information in the hard disk at that time. The flow of the process will be described with reference to FIGS.

When there is a request to start the program (determination A in FIG. 8), the path to the installation destination memory area 22 that should be written in the system storage area 21 when the client PC 200 is properly installed in the client personal computer 200 Then, the license information B is read (S300).

If acquisition of the installation destination information A has failed in S300 (NO in S301), an end message is displayed on the screen (S312), and the program ends. When the installation destination information A is obtained (S
(YES in 301), the validity of the license information B acquired in S300 is evaluated based on the license conditions of an arbitrary program (S310).

If it is determined in S310 that the process is invalid in the previous step (NO in S311), an end message is displayed on the screen of the display unit 15 of the user's client personal computer 200 (S312), and the program ends.

If it is determined in S310 that the license period is valid (YES in S310), the license period information that should have been stored in the memory area 22 based on the path to the installation destination memory area 22 collected in S300. The information of the file C and the boot history information D is read (S32
0).

If the data acquisition fails in S320 (NO in S321), an end message is displayed on the user's client personal computer 200 on the screen (S32
2) End the program (S321).

If the data has been obtained in S320 (YES in S321), the license period setting information C is decrypted by a method of reversing the procedure of "Example of date information encryption logic" as an example.

Next, if the decrypted data does not satisfy the condition of date (NO in S331), an end message is displayed on the screen (S332) and the program is terminated (S331).

When an arbitrary numeric character string is created,
In the encryption method shown in the example, the chance of satisfying this condition is one in 10,000, which is almost impossible.

It is determined whether or not the current system date (data calculated from the clock set in the personal computer) is included in the license start date and the license end date of the decoded date data (S333). . If the conditions are not satisfied (NO in S333), an end message is displayed on the screen of the user (S334), and the program is ended (S332).

If the condition is satisfied in S333 (S333
YES), the activation history information D is decrypted by a method of reversing the procedure of “example of encryption of date information” (S340) (determination in FIG. 8).

Next, it is determined whether or not the start history information D satisfies a condition that is a date (S341). If the condition is not satisfied (NO in S341), an end message is displayed on the user's client personal computer 200 on the screen (S3).
42), end the program.

If the condition is satisfied (YES in S341),
It is determined whether or not the current system date (data calculated from the clock set in the personal computer) is after the decoded date at the time of the previous activation (S343). If the conditions are not satisfied (NO in S343), an end message is displayed on the screen to the user (S344), and the program ends.

If the condition is satisfied in S343 (S343
YES), the boot history information D is updated to reflect the date data at the time of the current boot (S350) (setting in FIG. 8).

Then, the program requested to be activated is executed. Specifically, the installation destination information is compared with FIG.
It is collected by reference and execution processing (S360), and the storage location of the application body is specified (S36).
1). Here, if the storage location can be specified (Y in S361)
ES), and enters license collection information operation (S36).
2). If the license grant information can be collected (YES in S363), the application itself can be executed (S364). If the storage location cannot be specified in S361 (NO in S361), or if the license granting information cannot be collected in S363, the process ends.

Depending on the nature of the program, a value obtained by adding the operating time to the start time may be recorded in the start history information D file at the end of the program. According to this method, a license according to the usage time is also possible.

Depending on the nature of the program, it is possible to check the license information B not only at the time of startup but also at regular intervals during operation. This method is effective for a program that is assumed to be always operated on a certain type of workstation.

Further, if the acquisition result of the license information B indicates that the activation is impossible, it is possible to record the history of the inability to activate in the license information B in the system area. This technique makes it possible to collect a history of attempts to use the program by unauthorized means.

In the above embodiment, the license is provided via the network. However, the present invention is not limited to this. The above process is recorded on a recording medium such as an FD or a CD-ROM. The license may be granted by using, or such a program may be introduced via a network.

In the above embodiment, a client personal computer has been described as an example of a user terminal. However, the present invention is not limited to this, and a portable personal computer or a network such as the Internet such as an information terminal or a mobile phone can be used. It is needless to say that the present invention can be applied to a system using any user terminal that can be connected to.

The embodiments disclosed this time are to be considered in all respects as illustrative and not restrictive. The scope of the present invention is defined by the terms of the claims, rather than the description above, and is intended to include any modifications within the scope and meaning equivalent to the terms of the claims.

[Brief description of the drawings]

FIG. 1 is a diagram showing an overall configuration of a system to which the present invention is applied.

FIG. 2 is a block diagram illustrating a configuration example of a client personal computer.

FIG. 3 is a diagram showing a configuration inside a memory of a client personal computer.

FIG. 4 is a flowchart showing a processing procedure at the time of initial installation and at the time of license assignment.

FIG. 5 is a flowchart showing a processing procedure when a user requests update of license information.

FIG. 6 is a diagram showing a procedure for referring to specific information when a user requests update of license information.

FIG. 7 is a flowchart showing a processing procedure for querying a license information file and determining whether to start the program when the program is started.

FIG. 8 is a diagram showing a procedure for referring to specific information at the time of a program activation request;

[Explanation of symbols]

10 CPU, 11 memory, 12 interface, 13 modem, 15 display, 16 recording medium drive, 17 hard disk, 100 server computer, 150 network, 200 client personal computer.

Claims (11)

[Claims] 1. A storage unit for storing a start date and time of a program operating on a computer; a first comparing unit for comparing a current start time of the program with a previous start date and time stored in the storage unit; Determining means for determining whether or not to activate the program in accordance with a comparison result of the first comparing means. 2. The storage means further includes a usable period during which the program is usable, and further comprising a second comparing means for comparing whether or not the current activation time is within the usable period. The apparatus according to claim 1, wherein the determining unit determines whether to activate the program according to a comparison result of the first and second comparing units. 3. The first and second storage means encrypts and stores a period during which the program is usable.
An apparatus for preventing unauthorized use of a program according to claim 2. 4. The apparatus according to claim 2, wherein the usable period of the program is stored in the storage unit when the program is first introduced into the computer. 5. The apparatus for preventing unauthorized use of a program according to claim 4, wherein said program is introduced from a predetermined server computer via a network. 6. The apparatus according to claim 4, wherein the introduction of the program is performed using a predetermined recording medium. 7. The apparatus according to claim 2, wherein the usable period is renewable. 8. The apparatus according to claim 7, wherein updating of the usable period of the program is performed under management of the predetermined server computer. 9. A system for preventing unauthorized use of a program which uses a program according to a license from the server via the network in a client connected to the server via a network, wherein the client comprises: Storage means for receiving start-up information of the program from the storage means for storing the start-up date and time of the program based on the start-up permission information; and First comparing means for comparing; and deciding means for deciding whether or not to activate the program according to a result of the comparison by the first comparing means, wherein the server includes activation permission information of the program together with the client information. A system to prevent unauthorized use of programs. 10. A step of storing a start date and time of a program operating on a computer; a step of comparing a current start time and a previous start date and time of the program; and starting the program according to the comparison result. Deciding whether or not the program can be illegally used. 11. A method for storing, in a computer, a start date and time of a first program operating on the computer, a step of comparing the present start time and the previous start date and time of the first program, and Determining the activation or non-activation of the first program according to the result.