RU2637485C2 - Method of anti-pirate authorization of access to computer network - Google Patents

Abstract

FIELD: information technology.

SUBSTANCE: method of anti-pirate authorization of access to the computer network comprises the steps of receiving a request from the client computer, determining the test to be performed with respect to the client computer software, performing the test and denying the client access to the computer network if the client computer fails at passing the test. The test consists of at least cyclic redundancy code processing, checksums, hash-functions values, digital signatures, hidden executable code, whereby pirated software is detected and a condition is reached in which access to the computer network is possible only from computer devices with legal software. Authorization of access is made to the Internet.

EFFECT: increasing the effectiveness of protection against computer piracy.

2 dwg

Description

FIELD OF THE INVENTION

The present invention relates to the field of computer security, and more particularly to a method for controlling access to a computer network with the function of detecting unlicensed ("pirated") software.

State of the art

Computer piracy is a major concern for software manufacturers. Huge loss of cash income is attributed to the illegal copying and use of marketed software products. A common form of protection for this type of intellectual property is the use of embedded anti-piracy code, which usually complicates the work with a software product if it was illegally copied. The method is useful to discourage the actions of an inexperienced kidnapper, but such hackers ("hackers") are unlikely to stop such protection.

Thus, there is a need for a methodology to minimize the volume of computer piracy, which uses the concept of protection based on program code, but also meets the problem of “smart thief”, which can restore the structural scheme and algorithm of the code and suppress this protection.

A partial solution to the indicated problem is proposed by the patent “Method and system for restricting software updates” (patent for invention RU 2375739, published December 10, 2009), an aspect of which is that on the client’s computer after the request for software update the test controlled by the remote server is performed, the results of which determine whether the client’s software is licensed. If the test fails, then perhaps the code has been modified and most likely not properly licensed. Under such conditions, the update may be refused, thereby preventing the continuation of pirated software updates. The disadvantage of this method is the relatively low efficiency of protection against computer piracy.

Disclosure of invention

The present invention is a continuation of patent RU 2375739 and solves the above problems with an additional advantage. The technical result of the proposed method is to increase the effectiveness of protection against computer piracy. The main difference is that the technical result is achieved not through a ban on updating pirated software, but by restricting access to a computer network for client computers with pirated software.

Of course, preventing future updates will ultimately lead to pirated software becoming obsolete and therefore less useful, but it will take time for the user to “give up” and switch to the license, because obsolescence does not occur immediately. In turn, restricting access to a computer network, such as the Internet, will lead to the fact that the use of pirated software will become inappropriate without a wait factor, since a condition is created under which access to a socially important resource is possible only from computers with licensed software.

Thus, the present invention provides a more effective achievement of the technical result, expressed in increasing the effectiveness of protection against computer piracy, and is applicable for remote monitoring of software products as part of the equipment of any computers oriented to work in computer networks, allowing, among other things, to take measures to enforcing the legalization of pirated software, for example, by launching updates aimed at restoring illegally modified code.

The specified technical result is achieved in that the method of anti-piracy authorization of access to a computer network comprises the steps of receiving a request from a client computer, determining a test to be performed with respect to the client computer software, performing a test, and refusing to the client if the client computer fails when passing the test, and according to the invention, the request is accepted for authorization of access to the computer network (ADS), moreover, if the client computer fails to pass the test, then the client fails They are installed in the ADS, whereby this test detects pirated software and reaches the condition under which access to a computer network is possible only from computers with licensed software.

Brief Description of the Drawings

In FIG. 1 is a block diagram of a computer network in which an embodiment of the invention may be practiced.

In FIG. 2 is a flowchart of a method involving aspects of the invention.

The implementation of the invention

The anti-piracy ADS method includes receiving a client computer request for an ADS and providing a server for a client computer with a test to be executed. The test is executed on the client computer in relation to the client software. The customer may be denied ADS as a result of detection of pirated software by the test.

The implementation of the method is illustrated using the diagrams presented in the figures.

FIG. 1 depicts a network configuration 100 where aspects of the invention may be practiced. In this configuration, network 20 connects client computers A, B, and C (30, 40, and 50, respectively) to network server 10. Although only one server and only three clients are shown, the configuration of FIG. 1 is a demonstration one, and as many servers as possible, as fewer or more client computers as possible, while for the time the client computer passes the test and up to the result confirming the successful completion of the test, the communication session should be established only with the server responsible for providing a test, with the exception of cases when a full test is possible only with the interaction of other combinations of network resources.

In a preferred embodiment, the client computer 30, 40 and 50 contacts the server 10 to request an ADS that is configured to provide an ADS (for example, is included in the structure of an Internet service provider), as well as with the ability to provide a test code that can be transmitted to client computer and executed on it. Client 30, 40, and 50 may then send the test results back to server 10 for evaluation. Based on the results of the assessment, it is possible to determine whether the ADS client is allowed or if the ADS is denied based on the possibility that pirated software is installed on the client’s computer.

FIG. 2 illustrates an exemplary method combining aspects of the invention. In the system 200, which includes at least one client and one server, the method can be initiated by the client computer by generating and sending a request to the ADS (step 210). The server receives the request for ADS and responds by identifying and sending the test to the client computer (step 220).

In one embodiment of the invention, after receiving a request for an ADS, a series of requests can be made between the server and the client to allow the server to more fully identify the software products installed on the client’s computer and determine the most optimal conditions for the test. Next, the server sends the corresponding test code to the client computer (step 220). The client computer receives the test code, and then the test can be executed (step 230). The executable test code examines the client computer software for compliance with licensing requirements.

Aspects of the invention, but not in a limiting sense, is that the test generated by the server is executed on the client computer so that it can access all aspects of the software code of the client computer, and also that the test code is provided through a source outside the client computer, for example through a server. The result is that it becomes almost impossible to discredit the test results from the client.

After the executable test is executed on the client’s computer, the test results are provided to the server (step 240). The server may then begin to process the test results (step 250).

As an alternative embodiment, the client can send the request to the ADS (step 210), and the server can accept this request (step 221). The server can determine the most suitable test in order to check the client computer software for compliance with licensing requirements. Similarly to the embodiment described above, after a request for an ADS has been executed on the server, a series of requests can be made between the server and the client to allow the server to more fully identify software products installed on the client computer. When the server determines the proper test parameters, the server itself can execute this test online (online) (step 231).

Processing the test results (step 250) may consist in processing cyclic redundancy code, checksums, hash values, digital signatures, hidden executable code, or other test methods and comparing them with standards and tolerances to determine if the test passed successfully. If the test results show (step 260) that the client computer software is licensed, then the server is authorized to provide the client with ADS (step 280). If the test fails, then the licensing requirements for the client computer software were most likely discredited, and the client will be denied ADS (step 270).

Although aspects of the present invention have been described in connection with preferred embodiments of the various drawings, it should be understood that other similar embodiments may be used or changes and additions to the described embodiment may be made to perform the same functions of the present invention without departing from it. In addition, it should be emphasized that there are many computer platforms, such as personal computers, smartphones, tablets, smart TVs (Smart TV), wearable electronics and other "smart" gadgets, the rapid growth of which is facilitated by the development of the "Internet of Things" (The Internet of Things). Therefore, the claimed invention should not be limited to any particular embodiment, but rather should be construed in breadth and scope in accordance with the appended claims.

A comparative analysis of the claimed invention showed that the set of essential features of the claimed method of anti-piracy authorization of access to a computer network is not known from the prior art and, therefore, meets the condition of patentability “Novelty”.

In the prior art there were no signs that coincided with the distinguishing features of the claimed invention and affecting the achievement of the claimed technical result, therefore, the claimed invention meets the patentability condition "Inventive step".

The above information confirms the possibility of using the claimed method for ensuring computer security, which can be used to control access to a computer network with the function of detecting pirated software, and therefore meets the patentability condition "Industrial Applicability".

Claims (1)

A method of anti-piracy authorization of access to a computer network, comprising the steps of receiving a request from a client computer, determining a test to be performed with respect to the client computer software, performing a test, and denying the client access authorization to the computer network if the client computer fails when passing the test, and the test consists of at least processing cyclic redundant code, checksums, hash values, digital signatures, hidden executable code whereby pirated software is detected and a condition is achieved under which access to a computer network is possible only from computer devices with legal software, characterized in that access is authorized to the Internet.

Images