US20010000709A1 - Software distribution system and software utilization scheme for improving security and user convenience - Google Patents
Software distribution system and software utilization scheme for improving security and user convenience Download PDFInfo
- Publication number
- US20010000709A1 US20010000709A1 US09/738,857 US73885700A US2001000709A1 US 20010000709 A1 US20010000709 A1 US 20010000709A1 US 73885700 A US73885700 A US 73885700A US 2001000709 A1 US2001000709 A1 US 2001000709A1
- Authority
- US
- United States
- Prior art keywords
- software
- shared key
- information
- unit
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 claims description 47
- 238000003860 storage Methods 0.000 claims description 42
- 230000005540 biological transmission Effects 0.000 claims description 36
- 238000012545 processing Methods 0.000 claims description 22
- 230000004044 response Effects 0.000 claims description 8
- 238000007689 inspection Methods 0.000 claims description 5
- 230000006870 function Effects 0.000 description 136
- 238000004891 communication Methods 0.000 description 25
- 238000010586 diagram Methods 0.000 description 17
- 230000007246 mechanism Effects 0.000 description 15
- 238000001514 detection method Methods 0.000 description 5
- 238000009826 distribution Methods 0.000 description 5
- 238000004590 computer program Methods 0.000 description 4
- 238000001816 cooling Methods 0.000 description 4
- 238000013478 data encryption standard Methods 0.000 description 4
- 238000007639 printing Methods 0.000 description 4
- 241000700605 Viruses Species 0.000 description 3
- 230000008901 benefit Effects 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000002265 prevention Effects 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 230000003213 activating effect Effects 0.000 description 2
- 230000004913 activation Effects 0.000 description 2
- 230000003466 anti-cipated effect Effects 0.000 description 2
- 238000004422 calculation algorithm Methods 0.000 description 2
- 238000004364 calculation method Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000006872 improvement Effects 0.000 description 2
- 238000011835 investigation Methods 0.000 description 2
- 230000003211 malignant effect Effects 0.000 description 2
- 230000009467 reduction Effects 0.000 description 2
- 230000002123 temporal effect Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 238000005266 casting Methods 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000006835 compression Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000013144 data compression Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000009931 harmful effect Effects 0.000 description 1
- 238000010348 incorporation Methods 0.000 description 1
- 230000010365 information processing Effects 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/101—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
- G06F21/1011—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/007—Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/007—Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
- G06F2211/008—Public Key, Asymmetric Key, Asymmetric Encryption
Definitions
- the present invention relates to a system for distributing software products and a scheme for utilizing distributed softare products.
- a charging mechanism on the computer network has utilized the authentication technique based on the cryptography. For example, in a case of notifying a credit card number on the computer network, it has been necessary to encrypt the credit card number and transfer the encrypted credit card number so that a third person cannot obtain the credit card number illegally by wiretapping the communication line.
- FIG. 1 shows a conventional scheme for safely sending a credit card number on the network by utilizing the cryptographic technique.
- the left side represents a store which is offering the software for sale and the right side represents a customer who is trying to purchase the software.
- a computer network which will be abbreviated hereafter as a network
- functions on the store side and functions on the customer side are basically to be realized by means of softwares.
- the store has a store secret key 101 and a store public key 102 according to the public key cryptosystem in advance.
- the store secret key 101 is stored in a store secret key storage unit 350 , and its content cannot be referred from the others.
- the store public key is publicly disclosed so that anyone can acquire it through the network.
- the customer When the customer purchases the software, the customer first generates a shared key 103 at a shared key generation unit 302 in order to establish a safe communication with the store. This is done by generating a random number whcih cannot be guessed by the others.
- This shared key 103 is also referred to as a session key as it is shared during a particular session.
- the generated shared key 103 is then encrypted by a shared key encryption unit 312 .
- the store public key 102 is utilized for this encryption.
- the shared key encryption unit 312 gives this encrypted shared key 104 to a shared key transmission unit 314 , and then the shared key transmission unit 314 transmits this encrytted shared key 104 to the store side through the network.
- a shared key decryption unit 352 receives this encrypted shared key 104 , and descrypts it using the store secret key 101 so as to obtain the shared key 103 .
- an information encryption unit 316 encrypts an information to be transmitted to the store side, by using the shared key 103 .
- this information encryption unit 316 is utilized in encrypting a credit card number to be transmitted to the store side.
- the encrypted information 107 obtained by the information encryption unit 316 is then transmitted to the store side through the network by an information transmission unit 318 .
- an information decryption unit 354 receives the encrypted information 107 and descrypts it by using the shared key 103 so as to obtain the information transmitted from the customer side.
- an information such as a credit card number can be transmitted safely through the network.
- the shared key 103 encrypted by using the store public key 102 can be decrypted only by the store who has the store secret key 101 according to the principle of the public key cryptosystem.
- the transmitted information can only be descrypted by the store and the customer who shared the shared key 103 in this manner.
- the major requirements in realizing the software distribution through a network such as the Internet include: (1) a mechanism for specifying a person who is trying to acquire the software and charging this person safely (a high security measure); (2) a protection of the copyright of the software in view of the fact that the software can be rather easily copied (a prevention of illegal copy); and a measure against a spread of the software containing virus.
- a method for utilizing a software comprising the steps of: storing a shared key shared between a software provider and a user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user; requesting a desired software from the user to the software provider, and receiving the desired software in an encrypted form from the software provider; decrypting the desired software received from the software provider by using the shared key stored at the storing step; and utilizing the desired software in a decrypted form.
- a software distribution system in which a desired software is provided in an encrypted form from a software provider to a user, comprising: shared key storage units provided at both a software provider side and a user side, for storing a shared key shared between the software provider and the user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user; a request transmission unit provided at the user side, for transmitting a request for the desired software to the software provider side; a software encryption unit provided at the software provider side, for encrypting the desired software by using the shared key stored in the shared key storage unit on the software provider side; an encrypted software transmission unit provided at the software provider side, for transmitting the desired software in an encrypted form to the user side; and a software decryption unit provided at the user side, for receiving the desired software in an encrypted form from the software provider, decrypting the desired software received from the software provider by using the shared key stored in the shared key storage unit on the user side, so as
- a software distribution system in which a desired software is provided from a software provider to a user through a network, comprising: a client terminal on a user side, which is connected with a server on a software provider side through the network, and including: a registration unit for registering a user charging information and a shared key shared between the software provider and the user into the server; a request unit for sending a request for a desired software to the server; and an install unit for installing each software downloaded from the server in response to the request sent by the request unit; and a server on the software provider side, including: a charging processing unit for carrying out a charging processing according to the user charging information registered by the registration unit, when the desired software requested by the request is a fee charged software; and a download unit for downloading a software in response to the request sent by the request unit, the software to be downloaded being encrypted by using the shared key registered by the registration unit when the software to be downloaded is required to be encrypted.
- FIG. 1 is a diagram for explaining a conventional scheme for safely sending a credit card number on a network.
- FIG. 2 is a block diagram of a software distribution system according to the first embodiment of the present invention.
- FIG. 3 is a block diagram of a partial configuration of the software distribution system of FIG. 2 in a modified case of the first embodiment of the present invention.
- FIG. 4 is a diagram showing an exemplary data structure in a user information storage unit of the software distribution system of FIG. 2.
- FIG. 5 is a block diagram of a partial configuration of the software distribution system of FIG. 2 in an application case of the first embodiment of the present invention.
- FIG. 6 is a block diagram of a software distribution system according to the second embodiment of the present invention.
- FIG. 7 is a data flow diagram showing an exemplary flow of key data used in the software distribution system of FIG. 6.
- FIG. 8 is a data flow diagram showing an exemplary flow of data at a time of user registration in the software distribution system of FIG. 6.
- FIG. 9 is a diagram showing an exemplary data structure in a personal information file storage unit of the software distribution system of FIG. 6.
- FIG. 10 is a data flow diagram showing an exemplary flow of data at a time of downloading a software product in the software distribution system of FIG. 6.
- FIG. 11 is a diagram showing a conceptual configuration of a software product in the second embodiment of the present invention.
- FIG. 12 is a block diagram of a partial configuration of the software distribution system of FIG. 6 for explaining a function of a core software used in the second embodiment of the present invention.
- FIG. 13 is a flow diagram for a processing procedure at a time of downloading a software in the software distribution system of FIG. 6.
- FIG. 14 is a diagram showing an exemplary data configuration for an install list used in the second embodiment of the present invention.
- FIG. 15 is a diagram showing an install command format used in the second embodiment of the present invention.
- FIG. 16 is a diagram showing an exemplary install command in the install command format of FIG. 15.
- FIG. 17 is a diagram showing an exemplary data format for downloading a requested file in the second embodiment of the present invention.
- a software should be understood to cover everything that can be electronically transmitted without a physical distribution, including computer programs, databases, results obtained by the information retrieval service, books, musics, movies, TV programs, games, information to be interactively exchanged by the telephone or the interactive TV, etc.
- an ID information related to a software fee payment should be understood to include a credit card number, a valid period of a credit card, a private authentication number, a bank account number, a membership number related to a payment which is issued by a specific company (such as a user ID of a personal computer communication), etc.
- an auxiliary information related to a software utilization should be understood to mean an information on auxiliary conditions or software utilization environment at a time of a software utilization, which includes a number unique to a computer owned by a user (host ID), a producrt number of an OS in use, a password which is known only by a user, data registered in an IC card owned by a user, output data of an IC card owned by a user which is obtained upon entry of some input data, a time indicated by a built-in clock inside a computer, etc.
- FIG. 2 to FIG. 5 the first embodiment of a software utilization scheme and a software distribution system according to the present invention will be described in detail.
- a mechanism for the software distribution is based on the cryptography technique, and the point is how to construct a safe system by utilizing the cryptography technique.
- the data encryption algorithm itself can be the known one and there are many known algorithms, so that their detailed description will be omitted here.
- a store which sells softwares has two keys called a public key and a secret key.
- Data to be transferred is encrypted by using the public key at a transmitting side, and decrypted by using the secret key at a receiving side.
- the public key is literally a key to be disclosed in public, so that anyone can see the public key.
- a customer is requested to encrypt a shared key (not to be confused with the secret key) by using this public key, and send the encrypted shared key to the store.
- the store which has the secret key can decrypts the encrypted shared key by using the secret key, so as to obtain the shared key. In this scheme, even when communication data is wiretapped by a third person, this third person cannot decrypt the communication data because this third person does not know the secret key.
- the well known example of the public key crypstosystem is the RSA scheme.
- STT Secure Transaction Technology
- SEPP Secure Electronic Payment Protocol
- the present invention is directed to an improvement of exchanges between a customer and a store in particular. In this first embodiment, this latter aspect of the present invention will be described in detail, but it is also possible to apply the present invention to exchanges among three parties, by combining appropriate techniques.
- FIG. 2 shows a typical configuration of a software distribution system in this first embodiment.
- the left side represents a store which sells a software
- the right side represents a customer who purchases the software
- the store and the customer are connected through a network.
- the charging is to be made by specifying a person who is trying to acquire that software, and charging this person by using this person's bank account, this person's credit card account, or electronic money.
- the system must be so constructed that various illegal acts can be prevented at this point. For example, it is necessary to prevent an illegal deceiving of the fee, an illugal means for acquiring the software, an illegal use of the other person's account to acquire the software illegally, an illegal act of making some other person purchases the software against that other person's will, an illegal act of claiming later on that the software was not purchased despite of the fact that software was indeed purchased, an illegal act of acquiring the other person's account number by wiretapping data transmitted through the computer network, etc.
- the store has a store secret key 101 and a store public key 102 according to the public key cryptosystem.
- the store secret key 101 is stored in a store secret key storage unit 50 , and its content cannot be referred from the others.
- the store public key 102 is publicly disclosed so that anyone can acquire it through the network.
- As a mechanism for acquiring the public key a conventional scheme using a key distribution center is known, so that its description will be omitted here.
- the overall operation is divided into three stages of a user registeration section, an order section, and a utilization section.
- the user registration section is an operation for showing that a customer has a credibility such as a credit card solvency.
- the order section is an operation for actually making an order.
- the utilization section is an operation for utilizing the purchased software.
- a shared key 103 is generated by a shared key generation unit 2 on the customer side in order to establish a safe communication with the store. This is done by generating a random number that cannot be guessed by the others. In the conventional software distribution system, the shared key was used only at a time of the order and the purchase, and discarded after the use without storing it in anywhere.
- the shared key 103 is encrypted at a shared key encryption unit (B) 20 on the customer side, and a resulting encrypted shared key 202 is stored in a shared key storage unit 22 on the customer side.
- an auxiliary information 203 obtained by an auxiliary information detection unit 8 on the customer side is used as an encryption key at a time of encryption.
- the charging can be made such that the software can be used continuously as long as the same machine is used, or the charging can be made such that the software cannot be used even on the same machine when a new OS is used, unless the fee is paid again.
- the charging can be made such that there is a need to pay another fee when a certain time (date) is reached, or the charging can be made such that the software can be used for free during the night time but the software use during the day time is limited.
- the shared key 103 generated in this manner is also encrypted by a shared key encryption unit (A) 12 on the customer side.
- the store public key 102 is utilized.
- the shared key encryption unit (A) 12 sends a resulting encrypted shared key 104 to a shared key transmission unit 14 , and the shared key transmission unit 14 transmits this encrypted shared key 104 to the store side through the network.
- a shared key decryption unit (B) 52 on the store side then then decrypts this shared key 104 by using the store secret key 101 , so as to obtain the shared key 103 .
- an ID generation unit 4 on the customer side generates an ID 201 for the store to distinguish this customer from the other customers.
- This ID 201 can be basically an arbitrary random number, but the subsequent processing can be complicated if the ID 201 overlaps with the ID created by the other customer, so that the ID 201 should be created by a manner for avioding the overlap as much as possible.
- the ID 201 can be given as a combination of a creation time and an ID of a computer owned by the customer.
- the ID 201 is sent to a registration request encryption unit 16 whle being stored into an ID storage unit 24 at the same time.
- the storing of the ID 201 may be made by encrypting the ID 201 and then storing the encrypted ID, by using the similar procedure as in a case of storing the shared key 103 , but it is assumed that the ID 201 is to be stored without encryption in the following.
- the customer carries out a user information input at a user information input unit 6 .
- the user information includes a crediting information, an address, a name, an age, a name of the software desired to be purchased (in a case of making an order at the same time as the registration), etc.
- the crediting information is an information for showing that this customer certainly has an ability to pay, and that this customer can be responsible for the order.
- the crediting information can be a credit card number, a valid period of a credit card, a private authentication number, etc.
- the crediting information can be a bank account number, a membership number related to a payment which is issued by a specific company (such as a user ID of a personal computer communication), etc.
- the credit card number is used as a representative example of such a crediting information for the sake of simplicity.
- a user information 105 so entered is sent to the registration request encryption unit 16 .
- This registration request encryption unit 16 encrypts the received ID 201 and user information 105 by using the shared key 103 to obtain an encrypted registration request 204 .
- the encrypted registration request 204 is then transmitted by a registration request transmission unit 18 to a registration request decryption unit 54 on the store side through the network.
- the registration request decryption unit 54 decrypts the encrypted registration request 204 by using the shared key 103 , so as to obtain the user information 105 and the ID 201 . After it is confirmed that this ID 201 is not overlapping with any ID used for the other customer in the past, this ID 201 is accepted as the formal ID. If this ID 201 is overlapping, the above described procedure is repeated from the beginning once again.
- a method for confirming the ID and repeating the procedure is already known in the art and simple so that its description will be omitted.
- the registration request decryption unit 54 sends a customer information 108 to a customer information confirming unit 56 .
- the customer information is a part of the decrypted user information 105 which is related to the payment.
- thecustomer information 108 can be a credit card number and a name.
- the customer information confirming unit 56 confirms the credibility of the customer by inquirying (a system of) a customer credit investigation organization for credit cards, for example.
- FIG. 3 shows a partial configuration which differs from the corresponding one in FIG. 2, in an exemplary modified case of sending all of the ID 201 , the user information 105 and the shared key 103 by encrypting them using the store public key 102 .
- the shared key 103 generated by the shared key generation unit 2 , the ID 201 generated by the ID generation unit 4 , and the user information 105 obtained by the user information input unit 6 are all sent to the registration request encryption unit 16 ′.
- the registration request encryption unit 16 ′ encryptes them by using the store public key 103 , and sends the resulting encryption registration request 204 ′ to the registration request transmission unit 18 ′.
- the encrypted registration request 204 ′ transmitted by the registration request transmission unit 18 ′ is received by the registration request decryption unit 54 ′ and decrypted by using the store secret key 101 so as to obtain the user information 105 , the ID 201 and the shared key 103 .
- the rest of the operation in this case of FIG. 3 is identical to the operation in a case of FIG. 2.
- a user information storage unit 58 stores in correspondence the user information 105 , the ID 201 and the shared key 103 obtained from the registration request decryption unit 54 , when this customer is a good user to whom the software can be sold from now on according to a credit information 110 confirmed by the customer information confirming unit 56 .
- FIG. 4 shows an exemplary data structure to be stored in the user information storage unit 58 .
- the information of each customer is managed in the registration order.
- the ID overlap check can be carried out for only IDs of those customers who are registered rather recently.
- the user infrmation storage unit 58 records an ID, a shared key, a credit card number, and a private information.
- the ID is a number uniquely assigned to that customer, which is used at a time of extracting the shared key or the credit card number of that customer.
- the shared key has the same function as already explained.
- the credit card number is a number used in the payment by that customer. This credit card number may contain the valid period of the credit card within itself. In a case of using the payment from the bank account, a bank account number or a user specific number for specifying a bank account number will be entered instead.
- the credit card number is data to be sent by the store to the credit card company in order to specify the customer name, so that it is not absolutely necessary to register the card number itself.
- a customer number issued by the credit card company for the purpose of notifiying the customer name to the store may be stored instead.
- the improvement can be realized by a method the conventionally known in the electronic payment protocol, so that its description will be omitted.
- the private information is an auxiliary information related to that customer, which may not necessarily be significant for the payment purpose. However, the private information recorded here may be utilized as a reference data for the purpose of the credit investigation for that customer.
- each data is depicted in a non-encrypted form for the sake of simplicity, but it is preferable to store each data in an encrypted form in the actual system for the sake of security against the stealing.
- the encrypted shared key can be stored instead of storing the shared key. This can be readily realized by the conventionally known technique so that its description will be omitted.
- the customer enters a product specifying data 106 such as a name of the software desired to be purchased at a software specifying unit 10 .
- the product specifying data 106 is then sent to a hash unit 28 and a request transmission unit 26 , while the ID 201 extracted from the ID storage unit 24 is also sent to the hash unit 28 and the request transmission unit 26 .
- a shared key decryption unit (A) 30 decrypts the encrypted shared key 202 taken from the shared key storage unit 22 by using the auxiliary information 203 detected by the auxiliary information detection 8 , so as to obtain the shared key 103 .
- the hash unit 28 hashes the product specifying data 106 and the ID 201 by using the shared key 103 , and sends the obtained hash value 205 to the request transmission unit 26 .
- the hashing is an operation to obtain a certain value (hash value) by applying a specific function (which is shared at the store side) with respect to an input data, where this function has a property that the output cannot be guessed from the input and is usually referred to as a hash function.
- a method for producing the hash function is conventionally known so that its description will be omitted.
- the request transmission unit 26 transmits the product specifying data 106 , the ID 201 and the hash value 205 to the store side.
- a request receiving unit 60 at the store side then receives these data, and reads out the shared key 103 of the customer who has the corresponding ID from the user information storage unit 58 .
- the corresponding ID cannot be found, it is regarded as an error and an order will not be accepted.
- a hash unit 62 on the store side hashes the product specifying data 106 and the ID 201 by using the shared key 103 so as to obtain a server hash value 205 ′ and sends this server hash value 205 ′ to a request inspection unit 64 .
- the request inspection unit 64 then compares this server hash value 205 ′ with the hash value 205 received from the request receiving unit 60 .
- the function of the hash unit 62 is identical to the hash unit 28 on the customer side, so that the has value 205 and the server hash value 205 ′ should coincide.
- the request inspection unit 64 notifies this fact to a software transmission command unit 66 .
- a software transmission command unit 66 an occurrence of the purchase request (order) from the customer is legitimately proved, and the payment can be made.
- a specific manner of the payment it suffices to use a method known in the conventional electronic payment, so that it description will be omitted.
- the software transmission command unit 66 sends the shared key 103 to a software encryption unit 70 , and commands the transmission of the encrypted software to an encrypted software transmission unit 72 .
- the software encryption unit 70 encrypts a corresponding software 113 read out from a software storage unit 68 by using the shared key 103 to obtain an encrypted software 114 , and the encrypted software transmission unit 72 transmits the encrypted software 114 to the customer side.
- the encryption of the software is used for the purpose of casting the software into a form which cannot be directly executed or referred, so that there is no need to carry out the usual data encryption.
- a computer program which has a mechanism of being not executable unless the password is entered can be considered as a kind of the encrypted software.
- the encrypted software is assumed to have this broad meaning unless otherwise stated.
- the encrypted software 114 transmitted from the store side is then stored into an encrypted software storage unit 32 at the customer side.
- the shared key decryption unit (A) 30 on the customer side decrypts the encrypted shared key 202 taken out from the shared key storage unit 22 by using the auxiliary information 203 detected by the auxiliary information detection unit 8 so as to obtain the shared key 103 .
- the operation up to this point is based on the same mechanism as that for taking out the shared key at a time of making an order.
- a software decryption unit 34 then decrypts the encrypted software 114 taken out from the encrypted software storage unit 32 by using the shared key 103 so as to obtain the software 113 .
- the shared key 103 is stored in an encrypted form obtained by using the auxiliary information 203 , so that even when all of the shared key decryption unit (A) 30 , the shared key storage unit 22 and the encrypted software storage unit 32 are copied, it is impossible to make an illegal copy of the software. Moreover, it is also difficult to make an illegal copy of the software by analyzing the operation mechanism of the software, so that it actually becomes pointless to make an illegal copy by spending much effort and time.
- the shared key 103 on which the encryption is based is a key for use in the execution of the software as well as a key for use in the purchase of the software, so that if a malicious user distributes illegal copies with his shared key set therein to the others, the others could then purchase new softwares by using that malicious user's credit card number so that there is a possibility of incurring an actual damage to a malicious user himself, and for this reason it is quite effective in preventing this type of illegal act.
- the software distribution system of this first embodiment adopts a scheme in which a user who has completed the user registration once can subsequently purchase softwares without being required to enter the credit card number as long as a user uses the same computer used for the user registration, which is convenient for a user, and yet at the same time, the charging can be made quite safely.
- the software distribution system of this first embodiment there is no need for a customer to have a uniquely assigned public key. In other words, the sales can be realized under a relatively loose condition that a customer is assumed to have his own credit card number.
- FIG. 5 shows a partial configuration for realizing such an application case of the first embodiment, where a core software unit 35 of FIG. 5 is a program corresponding to the software decryption unit 34 of FIG. 2.
- This core software unit 35 is the main portion of the computer program which cannot be operated completely in this form. Further functions can be added to this main portion by adding the encrypted software to this core software unit 35 . In other words, even when the encrypted software is executed by a person who has no right to decrypt this encrypted software, not all the functions of the software can be realized.
- a software decryption unit 351 checks whether the encrypted software corresponding to this core software unit 35 exists in the encrypted software storage unit 32 or not. If it exits, the corresponding encrypted software 114 is read out from the encrypted software storage unit 32 , decrypted by using the shared key 103 , and a resulting decrypted software 301 is stored into a decrypted software loading unit 353 . If the shared key 103 cannot be obtained, correct data cannot be stored into the decrypted software loading unit 353 .
- the core software unit 35 verifies that the decrypted software 301 stored in the decrypted software loading unit 353 is the correct data.
- a method for realizing this verification can be a method for checking whether the decrypted software 301 stored in the decrypted software loading unit 353 is identical to data anticipated by the core software or not (i.e., whether it is correctly decrypted or not), or a method for executing the decrypted software 301 stored in the decrypted software loading unit 353 itself as a program, for example.
- the core software portion can be a limited function version of the software and only a charged portion of the software can be sold as the encrypted software.
- the core software can be a word-processor without a printing function and a communication function, and the printing function and the communication function are to be sold as separate charged softwares.
- the core software can be distributed for free through a freely accessible medium such as a CD-ROM or an electronic message board from which the core software can be acquired by anyone, and the charged portion can be purchased only when a user is satisfied with a trial use of the core software.
- an amount of data involved in the encryption and decryption can be reduced in this application case.
- the calculation for the encryption or decryption takes a time in proportion to an amount of data involved, so that if a software in a very large size is sold by encrypting it one by one at a time of purchase, it would require a considerable amount of time for the purchase (downloading) and/or the execution (decryption). For this reason, a portion to be encrypted should be kept as small as possible.
- the reduction of an amount of data implies that the communication line can be a thin one.
- the downloading takes time in general when a communication line between the store and the customer for purchasing the charged information is slow, but if the core software portion was already distributed by a CD-ROM or acquired through the other high speed network, it suffices to acquire a small encrypted software portion alone, so that the purchase does not take much time.
- this application case can also be utilized as another method for preventing the illegal copy.
- the software to be sold when the software to be sold is in a form of a book, the software will be eventually converted into the character string data in a computer readable format on a memory, so that it is possible to steal such converted data from a memory rather easily.
- the core software can be set as a software for reading the book, which reads the individual software (book) offered as a charged additional function and displays a content of the individual software on a screen. Then, by adopting a mechanism in which the core software decrypts and displays the necessary data (encrypted data) whenever a need arises, it becomes quite difficult to read out all the book data (characters) together.
- the decrypted software is going to be present on a memory only while the core software is executed, so that when a procedure for the core software to utilize the encrypted software is made very tedious, it is possible to improve the safety because it would require a considerable amount of effort and time to break the encryption of the software.
- a software to be sold through a network is often a software which requires rather frequent version updating or an information with only a temporal value (such as a weather forecast information), so that when the safety level of the software is made very high, it becomes much more economical to purchase the software legitimately by paying the proper price rather than spending much effort and time to produce illegal copies of the software. Consequently, when the safety level is made very high, it becomes pointless to commit the illegal act, and the fair distribution of the software will be promoted.
- the software is to be sold at some price, but the application of the present invention is not limited to such a case of selling the software at some price.
- the software distribution system of this first embodiment can be utilized in distributing such a software to specific customers alone according to the user information.
- the software can be purchased in a manner convenient to the customer in which there is no need to spend effort and time in entering the credit card number, while the charging can be realized safely. Also, what is to be charged can be specified in a sophisticated manner, so that the sales at a price appropriate for a value of each software will be promoted.
- the consumer can create the shared key for enabling the purchase at a desired store at his own will by using the general purpose credit card, so that there is no need to memorize the membership number issued by each store, and the software can be purchased while keeping the credit card itself in safety.
- the use of the shared key is quite limited so that the damage is kept minimum.
- This shared key has a lower generality than the usual credit card so that the potential damage is very low even if it is stolen.
- the shared key is a key for use in the execution of the software as well as a key for use in the purchase of the software, so that it is both difficult as well as risky to make the illegal copy of the software, and consequently it becomes pointless to commit the illegal act so that the protection of the copyright owner's right can be realized easily.
- one of the purposes of the present invention is to enable the install of the software without a tedious procedure.
- a mechanism for realizing an easy install it also becomes easier to rewrite data of the individual customer such as program files, and there is a possibility of creating a security hall in which a malicious person steals the communication and offers false programs to the customer from a faked store.
- the software is provided in an encrypted form obtained by using the shared key which are only known to the store and the customer, so that even if a malicious person successfully offers the false programs to the customer illegally, the customer can easily detect this illegal act because the malignant false program data cannot be correctly decrypted by using the shared key.
- a malignant computer program called a virus which causes some harmful effects will not be installed according to this first embodiment, so that the safety of the software distribution can be improved.
- a shared key to be used when a software provider offers the encrypted software to a user is set in relation to the ID information related to the payment of the software fee, and a user who shares the shared key is not required to enter the ID information at every occasion of ordering the software, so that the software can be purchased through the network by a simple operation, while the software provider can realize the software distribution at a proper price safely.
- the illegal copy of the software can actually incur damage to a malicious user, so that the illegal copy of the software can be prevented effectively.
- FIG. 6 shows an overall configuration of a software distribution system in this second embodiment, which generally comprises a server 401 for selling softwares and a client terminal 402 for purchasing softwares, which are connected through a network such as the Internet.
- the software distribution system of FIG. 6 is a system for electronically distributing softwares to a user safely and conveniently, and charging fees for the distributed softwares.
- a user makes an access to the server 401 through the network using a browser (not shown) of the client terminal 402 , for example, and transmits a purchase request for a desired software.
- the requested software is downloaded into the client terminal 402 while charging the user at the same time.
- it is possible to purchase and install a desired software by simply manipulating a mouse (not shown) of the own terminal (client terminal).
- a user who wishes to use the software disitribution system of FIG. 6 first activates a registration software at the own client terminal 402 (a personal computer, for instance).
- the registration software is a software for carrying out a prescribed system setting and a user registration to the server 401 .
- the registration asoftware is stored in a registration software storage unit 422 of the server 401 in advance, and downloaded and immediately installed into the client terminal 402 through the networ by a registration software download function unit 411 .
- a registration software function unit 431 of the client terminal 402 is a function unit which is set into an executable state at the client terminal 402 as the registration software downloaded from the server 401 is installed into the client terminal 402 , and which executes functions of the registration software.
- the registration software may be distributed to the user in advance by means of a recording medium such as a CD-ROM.
- the registration software function unit 431 first generates a session key and a shared key for encryption and decryption of a high security level information (a credit card number, an authentication information, etc.) to be transmitted between the server 401 and the client terminal 402 , applies a prescribed encryption processing to the generated shared key, and stores the encrypted shared key in an information file 434 .
- a high security level information a credit card number, an authentication information, etc.
- the user enters a personal information such as a name, an address, a credit card number, a valid period of a credit card, an age, a date of birth, etc., and this personal information is encrypted by using an encryption key which is predetermined between the server 401 and the client terminal 402 and transmitted to the server 401 through the network.
- a personal information such as a name, an address, a credit card number, a valid period of a credit card, an age, a date of birth, etc.
- a registration software admission function unit 412 of the server 401 when the encrypted personal information and the key data are received, a decryption using a prescribed decryption key is carried out and a credibility inquiry with respect to a credit card company is carried out through a credibility inquiry unit 413 .
- the personal information and the key data are registered into a personal information file storage unit 424 through a database registration unit 414 . (If the personal information and the key data are already written, they are updated to new data while a back-up of old data is made.)
- the client terminal 402 installs a program to be activated at a time of software purchase by the user, that is, a download program 435 .
- a download program 435 is already downloaded along with the registration software, and this download program 435 is outputted from the registration software function unit 431 and installed into the client terminal 402 .
- a download program function unit 432 of the client terminal 402 is a function unit which is set into an executable state at the client terminal 402 as the download program downloaded from the server 401 is installed into the client terminal 402 , and which executes functions of the download program.
- a setting for automatically activating the download program is made. This setting is made, for example, by registering a command for activating the download program when a prescribed identification information (which is assumed to be “Content-type: Application/ABC” in this second embodiment) is detected from a header portion of data received at the client terminal 402 into a prescribed file.
- a prescribed identification information which is assumed to be “Content-type: Application/ABC” in this second embodiment
- the user activates the browser of the client terminal 402 , for example, and makes an access to the server 401 by manipulating the mouse and requests a desired software to the server 401 .
- an install list (a list describing which file should be installed how) corresponding to the software specified by the user is read out from an install list storage unit 425 and transmitted to the client terminal 402 .
- the client terminal 402 activates the download program function unit 432 and transmits a request (download request) selected according to the install list to the server 401 .
- a file is read out from one of a core software storage unit 426 , a passive function file storage unit 427 and a library storage unit 428 according to the request from the client terminal 402 , and when it is confirmed that this user is an already registered user by referring to the personal information stored in the personal information file storage unit 424 , the read out file is transmitted to the client terminal 402 .
- the data compression (and the data encryption if necessary) is carried out.
- a prescribed charging processing is carried out by referring to the personal information stored in the personal information file storage unit 424 .
- the download program currently executed at the client terminal 402 then receives the file from the server 401 , and if there is no error, this file is installed.
- a core software function unit 433 of the client terminal 402 is a function unit which is set into an executable state at the client terminal 402 as the software downloaded from the server 401 is installed into the client terminal 402 , and which realizes prescribed information processing functions.
- This core software function unit 433 is configured such that a pre-installed core software 436 becomes fully functional as a passive function file 37 is incorporated by the core software 436 at a time of its activation.
- a program to be downloaded can be a general program other than the core software and the passive function file, and such a general program will be downloaded from the server 401 as a library 438 .
- An installed information storage unit 501 of the client terminal 402 registers an information (file names and version information) regarding files constituting the core software 436 and the passive function file 437 which are downloaded from the server 401 and installed into the client terminal 402 .
- a software product is formed by an active function file and a passive function file, where the passive function file is encrypted and then downloaded from the server 401 , and stored into the client terminal 402 in the encrypted form.
- the installed information storage unit 501 is searched through to check whether the passive function file is already installed or not.
- this encrypted passive function file is decrypted, and the normal operation is executed by incorporating the decrypted passive function file.
- a random number generation unit 451 provided in the registration software function unit 431 generates a random number as a shared key 461 to be shared between the server 401 and the client terminal 402 .
- This shared key 461 is a key to be used for preventing the illegal copy of the software.
- This shared key 461 is encrypted by the secret key cryptosystem such as DES (Data Encryption Standard) for example, using a product ID uniquely assigned to each client terminal 402 and then stored as a key file 452 in the information file 434 of the client terminal 402 .
- DES Data Encryption Standard
- this password 462 is hashed by using the shared key 461 and the obtained output is used as a purchase key 463 .
- the purchase key 463 is a key to be used for the user authentication at a time of product (software) purchase.
- the shared key 461 itself can be directly used as the purchase key 463 .
- the random number generation unit 451 generates a session key 464 and a shared key 461 at the client terminal 402 at a time of the user registration.
- the session key 464 is a key to be used at a time of encrypting the personal information and the key data (the shared key 461 , the purchase key 463 ) by the secret key cryptosystem such as DES for example, at a time of the user registration.
- the session key 464 is also encrypted by the public key cryptosystem such as RSA (Rivest Shamir Adleman) using a public key 465 which is prescribed with respect to the software provider and included in the registration software, and then transmitted to the server 401 .
- the encrypted personal information, key data (the shared key 461 , the purchase key 463 ) and session key 464 transmitted from the client terminal 402 are received at the server 401 , the encrypted session key 464 is decrypted by the RSA first, and the encrypted personal information and key data are decrypted by the DES using the decrypted session key 464 .
- the session key 464 is then discarded.
- the decrypted personal information and key data are stored into the personal information file storage unit 424 , while the credibility inquiry according to the personal information is carried out, as indicated in FIG. 8.
- a re-confirmation with respect to the client terminal 402 may also be made via another route, according to the need.
- FIG. 9 shows an exemplary data structure of the personal information to be stored in the personal information file storage unit 424 .
- the personal information file storage unit 424 records in correspondence the key data (the shared key, the purchase key) transmitted from the client terminal 402 , and the personal information including a credit card number and a private information such as a name and an address, and this information for users are recorded in an order of user registration.
- the information stored in the personal information file storage unit 424 will be referred in the user authentication, the credibility inquiry with respect to the credit card company, and the charging processing for the software when each registered user purchases the software product.
- FIG. 10 shows an exemplary flow of the key data used in the software distribution system of FIG. 6 and an exemplary flow of data at a time of downloading the software product from the server 401 .
- the core software is not encrypted and immediately installed at same time as the downloading into the client terminal 402 as already described.
- the server 401 first carries out prescribed user authentication processing and charging processing with respect to a user who made the transmission request for that software, and encrypts the specified passive function file by using the shared key 461 of that user, and then downloads the encrypted passive function file to the client terminal 402 .
- the encrypted passive function file is received at the client terminal 402 , the encrypted passive function file is stored into a prescribed region (an encrypted software storage unit 441 shown in FIG. 12) in the encrypted form.
- the core software When the core software is activated, the core software first decrypts the encrypted shared key 461 stored in the key file 452 by using the product ID 467 , and decrypts the encrypted passive function file by using the decrypted shared key 461 , and then incorporates the decrypted passive function file into itself.
- FIG. 11 shows a conceptual configuration of the software product in this second embodiment.
- the software product generally comprises the core software (active function file) 436 and the passive function file 437 .
- the core software 436 is a trial sample software in a function and validity limited version, which is operable by itself and which is to be offered for free.
- the passive function file 437 is to be provided in response to the user request, and used for a validity limit cancellation and a function addition (including a case of version updating) with respect to the already distributed core software 436 .
- This passive function file 437 is not operable by itself, and can be set operable by being incorporated into the core software 436 .
- the passive function file 437 is a data file or a program file which is normally fee charged, distributed to the client terminal 402 in the encrypted form, and stored in the encrypted form at the client terminal 402 .
- the core software 436 is normally formed by a plurality of files and usually has a larger size, while the passive function file 437 usually has a relatively smaller size.
- FIG. 12 shows a partial configuration for explaining the function of the core software in this second embodiment.
- This core software 436 is not completely operable even when it is installed into the client terminal 402 , and further functions can be added to this core software 436 by incorporating the decrypted passive function file 437 into this core software 436 .
- the installed information storage unit 501 is searched through to check whether the passive function file related to this core software 436 is already installed or not.
- this encrypted passive function file is read out from the encrypted software storage unit 441 , decrypted at a software decryption unit 436 a by using the shared key 461 , and the resulting decrypted passive function file 437 is stored into the decrypted software loading unit 436 b . If the shared key 461 cannot be obtained at this point, correct data cannot be stored into the decrypted software loading unit 436 b.
- the core software 436 verifies that the passive function file 437 stored the decrypted software loading unit 436 b is the correct data.
- a method for realizing this verification can be a method for checking whether the passive function file 437 stored in the decrypted software loading unit 436 b is identical to data anticipated by the core software 435 or not (i.e., whether it is correctly decrypted or not), or a method for executing the passive function file 437 stored in the decrypted software loading unit 436 b itself as a program, for example.
- the core software can be a word-processor without a printing function and a communication function, and the printing function and the communication function are to be sold as separate charged softwares.
- the core software can be distributed for free through a freely accessible medium such as a CD-ROM or an electronic message board from which the core software can be acquired by anyone, and the charged portion can be purchased only when a user is satisfied with a trial use of the core software.
- an amount of data involved in the encryption and decryption can be reduced in this application case.
- the calculation for the encryption or decryption takes a time in proportion to an amount of data involved, so that if a software in a very large size is sold by encrypting it one by one at a time of purchase, it would require a considerable amount of time for the purchase (downloading) and/or the execution (decryption). For this reason, a portion to be encrypted should be kept as small as possible.
- the reduction of an amount of data implies that the communication line can be a thin one.
- the downloading takes time in general when a communication line between the store and the customer for purchasing the charged information is slow, but if the core software was already distributed by a CD-ROM or acquired through the other high speed network, it suffices to acquire a small passive function file alone, so that the purchase does not take much time.
- this software product configuration can also be utilized as a measure for preventing the illegal copy.
- the shared key 261 to be used in decrypting the passive function file 437 is stored in an encrypted form obtained by using the product ID 467 , so that the decrypted passive function file 437 is present on a memory only while the core software 436 is executed. Consequently, even when all of the key file 452 , the core software 436 , and the encrypted passive function file 437 are copied, it is impossible to execute an illegally copied software unless the product ID 467 is also obtained. Moreover, it is also difficult to make an illegal copy of the software by analyzing the operation mechanism of the software, so that it actually becomes pointless to make an illegal copy by spending much effort and time.
- the core software 436 can be set as a software for reading the book, which reads the individual software (book) offered as the passive function file 437 and displays a content of the individual software on a screen. Then, by adopting a mechanism in which the core software 436 decrypts and displays the necessary data (encrypted data) whenever a need arises, it becomes quite difficult to read out all the book data (characters) together.
- the decrypted passive function file 437 is going to be present on a memory only while the core software 436 is executed, so that when a procedure for the core software 436 to utilize the passive function file 437 is made very tedious, it is possible to improve the safety because it would require a considerable amount of effort and time to break the encryption of the software.
- a software to be sold through a network is often a software which requires rather frequent version updating or an information with only a temporal value (such as a weather forecast information), so that when the safety level of the software is made very high, it becomes much more economical to purchase the software legitimately by paying the proper price rather than spending much effort and time to produce illegal copies of the software. Consequently, when the safety level is made very high, it becomes pointless to commit the illegal act, and the fair distribution of the software will be promoted.
- the user activates the browser of the client terminal 402 , for example, and makes an access to the server 401 by manipulating the mouse and requests a desired software to the server 401 .
- the client terminal 402 obtains an information on the environment of the client terminal 402 such as a type and a version of OS, a type of browser, etc., and transmits this information to the server 401 as an automatic environment judgement result.
- This automatic environment judgement result is provided as an option at a time of requesting the software.
- a function for obtaining and transmitting this information on the environment is usually provided in the browser for general use (step S 1 ).
- an install list (a list describing which file should be installed how) corresponding to the software specified by the user is read out from the install list storage unit 425 and transmitted to the client terminal 402 (step S 2 ).
- the server 401 knows the environment of the client terminal 402 according to the automatic environment judgement result received from the client terminal 402 as an option, so that the server 401 can change the install list to be transmitted to the client terminal 402 according to the environment of the client terminal 402 .
- the install list of softwares that can be operated by that specific OS will be transmitted.
- FIG. 14 shows an exemplary data configuration transmitted from the server 401 at this point, which generally comprises a header portion and a data portion.
- the header portion contains an identification information 471 (Content-type: Application/ABC) such that the download program will be automatically activated when this identification information 471 is detected at the client terminal 402 . (This setting is already made when the registration software function unit 431 installs the download program.)
- the data portion has an install list inserted therein in this example.
- the install list is formed by the latest version of the download program (Download-version), an address information for the server 401 (URL, for example), and a plurality of commands.
- the commands are used for notifying functions selected by the user's clicking of the mouse to the download program.
- an install command (either for the core software or the passive function file) as shown in FIG. 15, which describes which file should be installed how.
- FIG. 16 A concrete example of such an install command is shown in FIG. 16.
- the install command shown in FIG. 16 indicates that “Revision 3 ” of “dic 2 ” function of “version 1 ” of the file name “MT” is required, and this file should be transmitted in three divided parts, where an amount of transmission is 512 Kbytes for the first one and the second one, while it is 139 Kbytes for the third one, and a total capacity of a file obtained by concatenating and de-compressing these three parts is 7439 Kbytes.
- the commands also includes a command for displaying a version updating information for the software purchased by the user. If a file specified in this command is not installed, this command sets an execution of a subsequent install command as an error. This is used at a time of selling the passive function file, in order to confirm that the corresponding core software is already installed and normally operating.
- the client terminal 402 detects the identification information 471 contained in the header portion of FIG. 14 and activates the download program. Then, the latest version (Download-version) of the download program contained in the received install list is checked (step S 3 ). If the latest version has been updated, the download of the download program in the latest version is requested to the server 401 (step S 4 ). In response, the server 401 reads out a file of the download program in the latest version from a prescribed software storage unit, and downloads this file into the client terminal 402 without encrypting this file (step S 5 ).
- the server 401 reads out a file of the download program in the latest version from a prescribed software storage unit, and downloads this file into the client terminal 402 without encrypting this file (step S 5 ).
- the version information for the files (core software, passive function file) constituting the software specified by the user which is described in the install list is compared with the version information for the file registered in the installed information storage unit 501 , so as to check whether there is any file whose version has been updated, or whether there is any new additional function file (passive function file) in the install list.
- a download request with a prescribed header information for the necessary file attached thereto is transmitted to the server 401 (step S 6 ).
- the download request contains an information on the version of the currently installed file, for example.
- the header information includes an information (such as the purchase key, for example) for indicating that the user registration is already completed,
- step S 7 When the server 401 receives the download request from the client terminal 402 , and recognizes that this user is an already registered user according to the header information of the download request, the processing for the received download request is executed, and the downloading of the specified file is carried out in a format shown in FIG. 17 (step S 7 ).
- a type of data to be transmitted is described in a “transmission format” field. For example, “0” indicates a collective transmission of an entire file, “1” indicates a collective transmission of a remainder of data, “2” indicates a transmission of an entire file in divisions, and “3” indicates a transmission of a remainder of data in divisions.
- a file to be inserted into a “data” field may be compressed by a prescribed compression program.
- the de-compression program may be contained in the download program or may be provided as an external program to be read separately.
- a “data size” field indicates a size of data in the “data” field
- a “MASK” field indicates a mask to be applied to the shared key
- a “check sum” field indicates a check sum with respect to the data (non-encrypted) in the “data” field
- a “hash value” field indicates a hash value obtained by applying the hash function on all of the data size, data, check sum, and MASK field contents.
- the hash value is used so that the download program can detect an error when the hash value is not correct. Note that, when the “MASK” field has “0”, it implies that the file in the “data” field of this format is not to be encrypted.
- the server 401 After the file is transmitted, if the transmitted file is a fee charged one, the credit card number of this user is obtained by referring to the personal information file storage unit 424 by using the purchase key as a search key, and the credibility inquiry to the credit card company and the charging processing are carried out according to the obtained credit card number.
- the automatic environment judgement result obtained at the client terminal 402 is transmitted to the server 401 , and the server 401 distributes the suitable software according to this automatic environment judgement result. Then, at the client terminal 402 , the downloaded file is installed immediately when it is received, by the installer provided in the download program. In this manner, the install can be realized easily and surely even when the user does not have a thorough knowledge of the personal computer.
- the download program at the client terminal 402 executes the processing by recognizing the identification information set at a time of the user registration, so that there is no danger for introducing a computer virus.
- An information such as a credit card number is registered in the server 401 at a time of the user registration, so that at a time of purchasing the software, it suffices to transmit only a purchase request for a desired software. Then, by utilizing the on-line credibility inquiry using the registered credit card number, the charging is immediately carried out at the server 401 . Consequently, the user is only required to make some mouse clicking in purchasing the software, so that this scheme is suitable for the sales of cheap softwares. In addition, there is no need to enter the credit card number at every occasion of purchase, so that the safety level is improved.
- the download program at the client terminal 402 checks whether a version of a file already installed into that terminal has been updated or not by referring to the install list transmitted from the server 401 , and a result of this checking is presented to the user. According to this checking result, the user can easily makes the download request for the necessary file by simply manipulating the mouse. In addition, only the necessary portion is downloaded from the server 401 , so that an amount of communication can be reduced and the communication line cost can be saved.
- the user is allowed to make a trial use of a free trial sample version (core software) of the software first, and then the user purchases a fee charged software portion (passive function file) for enabling the regular operation which is to be incorporated into the core software. Consequently, a trouble or dissatisfaction regarding the purchased software product can be eliminated, so that this scheme is suitable for the sales of electronic information which is not returnable.
- core software free trial sample version
- the fee charged software portion (passive function file) is stored in an encrypted form at a time of being downloaded from the server 401 and installed into the client terminal 402 , and this passive function file is decrypted by a decryption and incorporation function of the core software at a time of each software activation in order to convert the software into an executable form.
- the shared key uniquely assigned to the user is used in the decryption, and this shared key is stored in an encrypted form obtained by using the product ID which is uniquely defined at the client terminal 402 . Consequently, even when all of the key file 452 , the core software 436 , and the encrypted passive function file 437 are illegally copied, it is impossible to execute the illegally copied software unless the product ID is also obtained.
- the download program at the client terminal 402 checks a version information for the download program which is described in the install list transmitted from the server 401 , and automatically requests the download of the download program in the latest version to the server 401 if the version has been updated, In this manner, the version updating of the download program can be realized easily, and consequently an addition of types of commands to be described in the install list becomes easier.
- the server 401 can try to transmit such a software in divisions. Namely, the downloading in divisions is commanded by the install command described in the install list in such a case. In this manner, when the downloading fails as a trouble occurs in the communication line between the server 401 and the client terminal 402 , a procedure to retry the downloading can be made simpler.
- the passive function portion of the software is to be sold as a fee charged software, but this second embodiment is not necessarily limited to this case, and the passive function portion can be provided as a free additional function to the active function portion. In such a case, it is not absolutely necessary to carry out the encryption of the passive function portion.
- the encryption/decryption by using the shared key is not necessarily limited to the encryption/decryption using the shared key as encryption/decryption key.
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Multimedia (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Information Transfer Between Computers (AREA)
Abstract
A software distribution system and a software utilization scheme for effectively preventing an illegal copy of a software is difficult while improving a convenience of a user. At a user side, a shared key to be shared between a software provider and a user is stored, where the shared key has a guaranteed correspondence with an ID information regarding a payment of a software fee by the user. Then, a desired software is requested to the software provider, and the desired software is received in an encrypted form from the software provider. The desired software received from the software provider is then decrypted by using the shared key stored at the user side, and the desired software in a decrypted form is utilized at the user side.
Description
- 1. Field of the Invention
- The present invention relates to a system for distributing software products and a scheme for utilizing distributed softare products.
- 2. Description of the Background Art
- Due to the spread of computers and computer networks, it is now possible to realize the software distribution entirely electronically, without utilizing the conventional trade system based on cash payment.
- The major problem in the software distribution now is how to specify a person who is trying to acquire the software and charge this person safely at a time of distributing the software that can be rather easily copied.
- Conventionally, a charging mechanism on the computer network has utilized the authentication technique based on the cryptography. For example, in a case of notifying a credit card number on the computer network, it has been necessary to encrypt the credit card number and transfer the encrypted credit card number so that a third person cannot obtain the credit card number illegally by wiretapping the communication line.
- On the other hand, a scheme for preventing an illegal copy has also been developed. The most frequently employed scheme is to apply some encryption to the software so that only a person who has a key (a cipher key, a password, etc.) for decrypting encrypted data can obtain the actual content of the software. However, in this scheme, it is still possible to make an illegal copy of the software by illegally copying the key or password itself.
- As it has been quite difficult to resolve all these problems completely by means of the software alone, there has been a proposition of a system called super-distribution which presumes a use of some special hardware. Namely, this is a system which uses a hardware functioning a black box that outputs some output data in response to an entered input data, while a content of this hardware itself cannot be analyzed even by the owner of this hardware. For example, it is possible to realize a scheme in which the encrypted data cannot be decrypted unless this function of a black box is available, by means of the conventional cryptographic technique such as the public key cryptosystem.
- However, this scheme is not very practical because it is necessary for every customer to have his own dedicated hardware and utilize this hardware all the times. In addition, even if this scheme is employed, it is not going to be able to prevent the illegal copy completely. For instance, even if only a particular person can replay the music provided by the software, it is still possible to copy that music by recording that music itself using some recording device. Because of these limitations, the super-distribution system has not been widely accepted commercially.
- FIG. 1 shows a conventional scheme for safely sending a credit card number on the network by utilizing the cryptographic technique.
- In FIG. 1, the left side represents a store which is offering the software for sale and the right side represents a customer who is trying to purchase the software. These store and customer are connected by a computer network (which will be abbreviated hereafter as a network) such as a telephone line or Internet. Note here that functions on the store side and functions on the customer side are basically to be realized by means of softwares.
- The store has a store
secret key 101 and a storepublic key 102 according to the public key cryptosystem in advance. The storesecret key 101 is stored in a store secretkey storage unit 350, and its content cannot be referred from the others. The store public key is publicly disclosed so that anyone can acquire it through the network. - When the customer purchases the software, the customer first generates a shared
key 103 at a sharedkey generation unit 302 in order to establish a safe communication with the store. This is done by generating a random number whcih cannot be guessed by the others. This sharedkey 103 is also referred to as a session key as it is shared during a particular session. The generated sharedkey 103 is then encrypted by a sharedkey encryption unit 312. The storepublic key 102 is utilized for this encryption. - The shared
key encryption unit 312 gives this encrypted sharedkey 104 to a sharedkey transmission unit 314, and then the sharedkey transmission unit 314 transmits this encrytted sharedkey 104 to the store side through the network. At the store side, a sharedkey decryption unit 352 receives this encrypted sharedkey 104, and descrypts it using the storesecret key 101 so as to obtain the sharedkey 103. - On the other hand, at the customer side, an
information encryption unit 316 encrypts an information to be transmitted to the store side, by using the sharedkey 103. For instance, thisinformation encryption unit 316 is utilized in encrypting a credit card number to be transmitted to the store side. Theencrypted information 107 obtained by theinformation encryption unit 316 is then transmitted to the store side through the network by aninformation transmission unit 318. At the store side, aninformation decryption unit 354 receives theencrypted information 107 and descrypts it by using the sharedkey 103 so as to obtain the information transmitted from the customer side. - According to this procedure, an information such as a credit card number can be transmitted safely through the network. Namely, the shared
key 103 encrypted by using the storepublic key 102 can be decrypted only by the store who has the storesecret key 101 according to the principle of the public key cryptosystem. Moreover, the transmitted information can only be descrypted by the store and the customer who shared the sharedkey 103 in this manner. - By the above described scheme, it is possible to sell the software only to a legitimate user who actually notified a necessary information such as a credit card number. However, the software can be copied easily in general, so that it is difficult to prevent an illegal act of copying the purchased software and distributing or selling the copied software.
- There are many propositions for preventing such an illegal act, such as a scheme for making the software operable only upon an entry of a specific password or a scheme for making the software executable only upon an acquisition of a license from a specific server at a time of each execution, rather than selling the software as it is, but none of them has proven to be definitive. The reason is that it is still possible to make an illegal copy of the purchased software by copying not just the software itself alone but all surrounding portions of the customer side system (software) that are necessary in utilizing the software as well so as to reproduce the identical software utilization environment elsewhere, and therefore it is possible to commit this illegal act without any serious risk.
- On the other hand, in a case of using a system which requires a complicated procedure such as an entry of a credit card number of a customer or a user ID or a password assigned to that customer in every occasion of the purchase, it is practically impossible to realize an elaborated charging scheme such as that for charging three yen for the tomorrow's weather forecast (as a low value service will be disused when a procedure is complicated). As a consequence, only expensive softwares could be distributed successfully and some software right owners could profit enormously while some other software right owners could not profit at all, so that the proper growth of the software distribution cannot be expected.
- Even when a mechanism for storing a credit card number in a computer and automatically transmitting the stored credit card number is used in order to resolve this situation, for example, there is a possibility for the illegal use of that computer by a third person when that computer is stolen, so that the convenience and the safety cannot be achieved simultaneously.
- As described, in the conventional software distribution system, it is possible to make a purchase order electronically without a danger of having a credit card number stolen, but a measure against the illegal copy of the purchased software has been insufficient. This is because a process of ordering the software and a process ofutilizing the software have been separate processes from a customer's viewpoint, and it has been possible to apply various illegal methods for realizing the illegal copy to the software once the software was purchased.
- In addition, in some conventional software distribution system, it has been difficult to establish an elaborated charging scheme such as that for charging the same customer repeatedly when this customer utilizes the same software at different computers, for example.
- Nowadays, due to the rapid spread of the Internet, a system for electronically distributing information such as programs and charging for the distributed information is widely in use.
- The major requirements in realizing the software distribution through a network such as the Internet include: (1) a mechanism for specifying a person who is trying to acquire the software and charging this person safely (a high security measure); (2) a protection of the copyright of the software in view of the fact that the software can be rather easily copied (a prevention of illegal copy); and a measure against a spread of the software containing virus.
- Of these, (1) and (2) are already discussed above. As for (3), this is an indispensable requirement because the information such as programs is to be exchanged through the network.
- In addition, it is also necessary to consider an effective utilization of communication resources by accounting for the communication line cost, etc., in view of the fact that a large amount of information is to be transmitted through the network.
- From a point of view of the user's convenience, operations such as those for downloading programs through the network and installing them into a user's own terminal can be too difficult especially for those who are not accustomed to handle a personal computer. In order to realize a wide spread of such a system, it is expected to be required that even a person without much knowledge about the personal computer, the communication, etc. must be able to operate a system easily.
- Moreover, in a case of selling the electronic information through the network, it is also necessary to provide a measure for handling a user's dissatisfaction with the purchased software product, because it is impossible to actually return the purchased software product itself even when a user is dissatisfied with the purposed software product.
- Furthermore, it is desirable for such a system to be able to deal with the version updating of the software through the network easily, as it contributes to increase a user's reliability on a sales agent and a user's enthusiasm for purchasing the software product, thereby realizing a wide spread of a system.
- Thus the conventional software distribution system has been associated with problems that not enough considerations have been given to the illegal copy of the software and the user's convenience.
- It is therefore an object of the present invention to provide a software distribution system and a software utilization scheme in which an illegal copy of a software is difficult.
- It is another object of the present invention to provide a software distribution system and a software utilization scheme in which a user can purchase a software through a network by means of a simple operation.
- It is another object of the present invention to provide a software distribution system and a software utilization scheme for enabling a safe software distribution at proper prices.
- It is another object of the present invention to provide a software distribution system in which the system operation can be done easily and the user's convenience can be improved by omitting required user operations for a purchase request and an install of a software offered through the network, and for a frequently required software version updating procedure.
- It is another object of the present invention to provide a software distribution system in which the user's convenience can be improved by offering a free sample version (an active function part) of the software to be purchased first, and offering a passive function part for realizing functions of the regular software product at an appropriate price if the user is satisfied with the software product through a trial use of the free sample version.
- It is another object of the present invention to provide a software distribution system in which a charged part (a passive function part) of the software is stored at the user's terminal in an encrypted form after being downloaded, and it is necessary to use an ID uniquely assigned to the user's terminal at a time of decrypting the encrypted software part, so as to be able to deal with the illegal copy of the software.
- It is another object of the present invention to provide a software distribution system with a high security level, in which a charging processing is carried out at a time of offering a charged part (a passive function part) of the software to the user, according to a pre-registered user's charge information, so that there is no need to transmit a highly classified information on a credit card number at every occasion to purchase the software.
- According to one aspect of the present invention there is provided a method for utilizing a software, comprising the steps of: storing a shared key shared between a software provider and a user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user; requesting a desired software from the user to the software provider, and receiving the desired software in an encrypted form from the software provider; decrypting the desired software received from the software provider by using the shared key stored at the storing step; and utilizing the desired software in a decrypted form.
- According to another aspect of the present invention there is provided a software distribution system in which a desired software is provided in an encrypted form from a software provider to a user, comprising: shared key storage units provided at both a software provider side and a user side, for storing a shared key shared between the software provider and the user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user; a request transmission unit provided at the user side, for transmitting a request for the desired software to the software provider side; a software encryption unit provided at the software provider side, for encrypting the desired software by using the shared key stored in the shared key storage unit on the software provider side; an encrypted software transmission unit provided at the software provider side, for transmitting the desired software in an encrypted form to the user side; and a software decryption unit provided at the user side, for receiving the desired software in an encrypted form from the software provider, decrypting the desired software received from the software provider by using the shared key stored in the shared key storage unit on the user side, so as to obtain the desired software in a decrypted form that can be utilized at the user side.
- According to another aspect of the present invention there is provided a software distribution system in which a desired software is provided from a software provider to a user through a network, comprising: a client terminal on a user side, which is connected with a server on a software provider side through the network, and including: a registration unit for registering a user charging information and a shared key shared between the software provider and the user into the server; a request unit for sending a request for a desired software to the server; and an install unit for installing each software downloaded from the server in response to the request sent by the request unit; and a server on the software provider side, including: a charging processing unit for carrying out a charging processing according to the user charging information registered by the registration unit, when the desired software requested by the request is a fee charged software; and a download unit for downloading a software in response to the request sent by the request unit, the software to be downloaded being encrypted by using the shared key registered by the registration unit when the software to be downloaded is required to be encrypted.
- Other features and advantages of the present invention will become apparent from the following description taken in conjunction with the accompanying drawings.
- FIG. 1 is a diagram for explaining a conventional scheme for safely sending a credit card number on a network.
- FIG. 2 is a block diagram of a software distribution system according to the first embodiment of the present invention.
- FIG. 3 is a block diagram of a partial configuration of the software distribution system of FIG. 2 in a modified case of the first embodiment of the present invention.
- FIG. 4 is a diagram showing an exemplary data structure in a user information storage unit of the software distribution system of FIG. 2.
- FIG. 5 is a block diagram of a partial configuration of the software distribution system of FIG. 2 in an application case of the first embodiment of the present invention.
- FIG. 6 is a block diagram of a software distribution system according to the second embodiment of the present invention.
- FIG. 7 is a data flow diagram showing an exemplary flow of key data used in the software distribution system of FIG. 6.
- FIG. 8 is a data flow diagram showing an exemplary flow of data at a time of user registration in the software distribution system of FIG. 6.
- FIG. 9 is a diagram showing an exemplary data structure in a personal information file storage unit of the software distribution system of FIG. 6.
- FIG. 10 is a data flow diagram showing an exemplary flow of data at a time of downloading a software product in the software distribution system of FIG. 6.
- FIG. 11 is a diagram showing a conceptual configuration of a software product in the second embodiment of the present invention.
- FIG. 12 is a block diagram of a partial configuration of the software distribution system of FIG. 6 for explaining a function of a core software used in the second embodiment of the present invention.
- FIG. 13 is a flow diagram for a processing procedure at a time of downloading a software in the software distribution system of FIG. 6.
- FIG. 14 is a diagram showing an exemplary data configuration for an install list used in the second embodiment of the present invention.
- FIG. 15 is a diagram showing an install command format used in the second embodiment of the present invention.
- FIG. 16 is a diagram showing an exemplary install command in the install command format of FIG. 15.
- FIG. 17 is a diagram showing an exemplary data format for downloading a requested file in the second embodiment of the present invention.
- Now, several embodiments of a software utilization scheme and a software distribution system according to the present invention will be described in detail.
- First, intended meanings of some terms used in the following description will be defined.
- In the following, a software should be understood to cover everything that can be electronically transmitted without a physical distribution, including computer programs, databases, results obtained by the information retrieval service, books, musics, movies, TV programs, games, information to be interactively exchanged by the telephone or the interactive TV, etc.
- Also, in the following, an ID information related to a software fee payment should be understood to include a credit card number, a valid period of a credit card, a private authentication number, a bank account number, a membership number related to a payment which is issued by a specific company (such as a user ID of a personal computer communication), etc.
- Also, in the following, an auxiliary information related to a software utilization should be understood to mean an information on auxiliary conditions or software utilization environment at a time of a software utilization, which includes a number unique to a computer owned by a user (host ID), a producrt number of an OS in use, a password which is known only by a user, data registered in an IC card owned by a user, output data of an IC card owned by a user which is obtained upon entry of some input data, a time indicated by a built-in clock inside a computer, etc.
- Referring now to FIG. 2 to FIG. 5, the first embodiment of a software utilization scheme and a software distribution system according to the present invention will be described in detail.
- A mechanism for the software distribution is based on the cryptography technique, and the point is how to construct a safe system by utilizing the cryptography technique. Here, the data encryption algorithm itself can be the known one and there are many known algorithms, so that their detailed description will be omitted here.
- For the purpose of data encryption, it is sufficient if a secret key necessary for the encryption is generated prior to the encryption and this secret key is shared by a user and a correspondent, but this cannot be assumed in a general case of software distribution, so that it is necessary to exchange the key first. To this end, the public key cryptosystem can be used.
- In the public key cryptosystem, a store which sells softwares has two keys called a public key and a secret key. Data to be transferred is encrypted by using the public key at a transmitting side, and decrypted by using the secret key at a receiving side. The public key is literally a key to be disclosed in public, so that anyone can see the public key. A customer is requested to encrypt a shared key (not to be confused with the secret key) by using this public key, and send the encrypted shared key to the store. The store which has the secret key can decrypts the encrypted shared key by using the secret key, so as to obtain the shared key. In this scheme, even when communication data is wiretapped by a third person, this third person cannot decrypt the communication data because this third person does not know the secret key.
- The well known example of the public key crypstosystem is the RSA scheme. There are also some protocols combining various cryptography techniques such as STT (Secure Transaction Technology) and SEPP (Secure Electronic Payment Protocol) for the electronic payment in which information on a credit card number can be transferred to the credit card company without disclosing the credit card number even to the store. These protocols are devised in consideration to the security among three parties: a customer, a store, and a credit card company. In contrast, the present invention is directed to an improvement of exchanges between a customer and a store in particular. In this first embodiment, this latter aspect of the present invention will be described in detail, but it is also possible to apply the present invention to exchanges among three parties, by combining appropriate techniques.
- FIG. 2 shows a typical configuration of a software distribution system in this first embodiment. In FIG. 2, the left side represents a store which sells a software, while the right side represents a customer who purchases the software, and the store and the customer are connected through a network.
- Here, the charging is to be made by specifying a person who is trying to acquire that software, and charging this person by using this person's bank account, this person's credit card account, or electronic money. The system must be so constructed that various illegal acts can be prevented at this point. For example, it is necessary to prevent an illegal deceiving of the fee, an illugal means for acquiring the software, an illegal use of the other person's account to acquire the software illegally, an illegal act of making some other person purchases the software against that other person's will, an illegal act of claiming later on that the software was not purchased despite of the fact that software was indeed purchased, an illegal act of acquiring the other person's account number by wiretapping data transmitted through the computer network, etc.
- The prevention of illegal copy is also an important issue. Even when a perfect charging mechanism is devised, the software can be copied rather easily in general, so that it is easily possible to distribute the purchased software to the others for free, or illegally resell the purchased software at cheaper price. In particular, in the today's well developed computer network, it is possible to carry out such illegal acts completely secretly by using information exchange means such as an encrypted electronic mail or message board, so that this is a very important issue today.
- As shown in FIG. 2, the store has a store
secret key 101 and a storepublic key 102 according to the public key cryptosystem. The storesecret key 101 is stored in a store secretkey storage unit 50, and its content cannot be referred from the others. The storepublic key 102 is publicly disclosed so that anyone can acquire it through the network. As a mechanism for acquiring the public key, a conventional scheme using a key distribution center is known, so that its description will be omitted here. - In this first embodiment, the overall operation is divided into three stages of a user registeration section, an order section, and a utilization section. The user registration section is an operation for showing that a customer has a credibility such as a credit card solvency. The order section is an operation for actually making an order. The utilization section is an operation for utilizing the purchased software. Here, it is assume that a customer who has done the user registration once can make the order without the user registration from the next time.
- Note here that it is possible to modify these operations of this first embodiment in such a trivial manner that the user registration section and the order section are carried out together and called an order section, for example. In the following, these three stages of the operation in this first embodiment will be described for the most general case.
- When a customer wishes to purchase the software, a shared
key 103 is generated by a sharedkey generation unit 2 on the customer side in order to establish a safe communication with the store. This is done by generating a random number that cannot be guessed by the others. In the conventional software distribution system, the shared key was used only at a time of the order and the purchase, and discarded after the use without storing it in anywhere. In contrast, in this first embodiment, the sharedkey 103 is encrypted at a shared key encryption unit (B) 20 on the customer side, and a resulting encrypted shared key 202 is stored in a sharedkey storage unit 22 on the customer side. - At the shared key encryption unit (B)20, an
auxiliary information 203 obtained by an auxiliary information detection unit 8 on the customer side is used as an encryption key at a time of encryption. - By using the
auxiliary information 203 for the encryption of the shared key 103 at the shared key encryption unit (B) 20, the lowering of the safety due to the stealing of the sharedkey storage unit 22 can be prevented. - In addition, by selecting which auxiliary information is to be used, it becomes possible to realize the charing in a variety of different manners. For example, the charging can be made such that the software can be used continuously as long as the same machine is used, or the charging can be made such that the software cannot be used even on the same machine when a new OS is used, unless the fee is paid again. Also, the charging can be made such that there is a need to pay another fee when a certain time (date) is reached, or the charging can be made such that the software can be used for free during the night time but the software use during the day time is limited.
- Moreover, it is also possible to use the password entered by the user at that point as the auxiliary information. In such a case, by modifying the setting of the auxiliary information detection unit8, it is easily possible to limit the software utilization to only a person who knows the specific password.
- Note that there is an option of not providing the shared key encryption unit (B)20 and the auxiliary information detection unit 8. In such a case, the shared key 103 generated by the shared
key generation unit 2 will be directly stored into the sharedkey storage unit 22. - Now, the shared key103 generated in this manner is also encrypted by a shared key encryption unit (A) 12 on the customer side. At a time of this encryption, the store
public key 102 is utilized. The shared key encryption unit (A) 12 sends a resulting encrypted shared key 104 to a sharedkey transmission unit 14, and the sharedkey transmission unit 14 transmits this encrypted shared key 104 to the store side through the network. A shared key decryption unit (B) 52 on the store side then then decrypts this shared key 104 by using the storesecret key 101, so as to obtain the sharedkey 103. - Also, an
ID generation unit 4 on the customer side generates anID 201 for the store to distinguish this customer from the other customers. ThisID 201 can be basically an arbitrary random number, but the subsequent processing can be complicated if theID 201 overlaps with the ID created by the other customer, so that theID 201 should be created by a manner for avioding the overlap as much as possible. For example, theID 201 can be given as a combination of a creation time and an ID of a computer owned by the customer. TheID 201 is sent to a registrationrequest encryption unit 16 whle being stored into anID storage unit 24 at the same time. Here, the storing of theID 201 may be made by encrypting theID 201 and then storing the encrypted ID, by using the similar procedure as in a case of storing the sharedkey 103, but it is assumed that theID 201 is to be stored without encryption in the following. - On the other hand, the customer carries out a user information input at a user
information input unit 6. Here, the user information includes a crediting information, an address, a name, an age, a name of the software desired to be purchased (in a case of making an order at the same time as the registration), etc. - Here, the crediting information is an information for showing that this customer certainly has an ability to pay, and that this customer can be responsible for the order. For example, the crediting information can be a credit card number, a valid period of a credit card, a private authentication number, etc. Also, depending on a manner of payment, the crediting information can be a bank account number, a membership number related to a payment which is issued by a specific company (such as a user ID of a personal computer communication), etc. In the following, the credit card number is used as a representative example of such a crediting information for the sake of simplicity.
- Now, a
user information 105 so entered is sent to the registrationrequest encryption unit 16. This registrationrequest encryption unit 16 encrypts the receivedID 201 anduser information 105 by using the shared key 103 to obtain anencrypted registration request 204. Theencrypted registration request 204 is then transmitted by a registrationrequest transmission unit 18 to a registrationrequest decryption unit 54 on the store side through the network. - The registration
request decryption unit 54 decrypts theencrypted registration request 204 by using the sharedkey 103, so as to obtain theuser information 105 and theID 201. After it is confirmed that thisID 201 is not overlapping with any ID used for the other customer in the past, thisID 201 is accepted as the formal ID. If thisID 201 is overlapping, the above described procedure is repeated from the beginning once again. Here, a method for confirming the ID and repeating the procedure is already known in the art and simple so that its description will be omitted. - Then, the registration
request decryption unit 54 sends acustomer information 108 to a customerinformation confirming unit 56. Here, the customer information is a part of the decrypteduser information 105 which is related to the payment. For example, thecustomerinformation 108 can be a credit card number and a name. Also, the customerinformation confirming unit 56 confirms the credibility of the customer by inquirying (a system of) a customer credit investigation organization for credit cards, for example. - Note that, in the description up to this point, the communication from the customer to the store is carried out by encrypting the
ID 201 and theuser information 105 by using the sharedkey 103, but this part of the above description can be modified. For example, FIG. 3 shows a partial configuration which differs from the corresponding one in FIG. 2, in an exemplary modified case of sending all of theID 201, theuser information 105 and the sharedkey 103 by encrypting them using the storepublic key 102. In this case, the shared key 103 generated by the sharedkey generation unit 2, theID 201 generated by theID generation unit 4, and theuser information 105 obtained by the userinformation input unit 6 are all sent to the registrationrequest encryption unit 16′. Then, the registrationrequest encryption unit 16′ encryptes them by using the storepublic key 103, and sends the resultingencryption registration request 204′ to the registrationrequest transmission unit 18′. Theencrypted registration request 204′ transmitted by the registrationrequest transmission unit 18′ is received by the registrationrequest decryption unit 54′ and decrypted by using the storesecret key 101 so as to obtain theuser information 105, theID 201 and the sharedkey 103. The rest of the operation in this case of FIG. 3 is identical to the operation in a case of FIG. 2. - Now, on the store side, a user
information storage unit 58 stores in correspondence theuser information 105, theID 201 and the shared key 103 obtained from the registrationrequest decryption unit 54, when this customer is a good user to whom the software can be sold from now on according to a credit information 110 confirmed by the customerinformation confirming unit 56. - FIG. 4 shows an exemplary data structure to be stored in the user
information storage unit 58. In FIG. 4, the information of each customer is managed in the registration order. Here, there is no need to manage the information in the registration order, but in a case of attaching a time information to the ID generated by theID generation unit 4 for the purpose of avoiding the overlap of IDs, the ID overlap check can be carried out for only IDs of those customers who are registered rather recently. - As shown in FIG. 4, for each customer, the user
infrmation storage unit 58 records an ID, a shared key, a credit card number, and a private information. Here, the ID is a number uniquely assigned to that customer, which is used at a time of extracting the shared key or the credit card number of that customer. The shared key has the same function as already explained. - The credit card number is a number used in the payment by that customer. This credit card number may contain the valid period of the credit card within itself. In a case of using the payment from the bank account, a bank account number or a user specific number for specifying a bank account number will be entered instead.
- Also, the credit card number is data to be sent by the store to the credit card company in order to specify the customer name, so that it is not absolutely necessary to register the card number itself. For example, a customer number issued by the credit card company for the purpose of notifiying the customer name to the store may be stored instead. In such a case, there is no need for the store to manage the customer's credit card number, so that the safety against the stealing of the user
information storage unit 58 can be increased. In this regard, the improvement can be realized by a method the conventionally known in the electronic payment protocol, so that its description will be omitted. - The private information is an auxiliary information related to that customer, which may not necessarily be significant for the payment purpose. However, the private information recorded here may be utilized as a reference data for the purpose of the credit investigation for that customer.
- In FIG. 4, for the fourth customer in the registration order, the information in fields other than the ID is erased. This implies that the sales with respect to this customer had been stopped for some reason. The reason for keeping the ID even after the sales had been stopped is because the subsequent processing would be complicated if an order is made by that customer after the same ID is newly registered for another customer. Here, however, this customer actually cannot make an order illegally because the shared key does not match, so that an entire entry for this customer may be erased after a certain period of time.
- Also, in FIG. 4, for the fifth custmer in the registration order, the information in the credit card number field alone is erased. This implies that a valid period of a credit card of this customer has expired. In this case, however, the shared key is still valid, so that it implies that the store still acknowledges the legitimacy of this customer. By registering a new credit card number, it becomes possible for this customer to make an order again. Thereafter, the software sales with respect to the customers are carried out according to the
user information 105 and theID 201 stored in this userinformation storage unit 58. - Note that, in FIG. 4, each data is depicted in a non-encrypted form for the sake of simplicity, but it is preferable to store each data in an encrypted form in the actual system for the sake of security against the stealing. For example, the encrypted shared key can be stored instead of storing the shared key. This can be readily realized by the conventionally known technique so that its description will be omitted.
- This completes the description of the user registration section in this first embodiment.
- Next, the order section for actually making an order in this first embodiment will be described.
- At the customer side, the customer enters a
product specifying data 106 such as a name of the software desired to be purchased at asoftware specifying unit 10. Theproduct specifying data 106 is then sent to ahash unit 28 and arequest transmission unit 26, while theID 201 extracted from theID storage unit 24 is also sent to thehash unit 28 and therequest transmission unit 26. On the other hand, a shared key decryption unit (A) 30 decrypts the encrypted shared key 202 taken from the sharedkey storage unit 22 by using theauxiliary information 203 detected by the auxiliary information detection 8, so as to obtain the sharedkey 103. - The
hash unit 28 hashes theproduct specifying data 106 and theID 201 by using the sharedkey 103, and sends the obtainedhash value 205 to therequest transmission unit 26. Here, the hashing is an operation to obtain a certain value (hash value) by applying a specific function (which is shared at the store side) with respect to an input data, where this function has a property that the output cannot be guessed from the input and is usually referred to as a hash function. A method for producing the hash function is conventionally known so that its description will be omitted. - The
request transmission unit 26 transmits theproduct specifying data 106, theID 201 and thehash value 205 to the store side. Arequest receiving unit 60 at the store side then receives these data, and reads out the sharedkey 103 of the customer who has the corresponding ID from the userinformation storage unit 58. When the corresponding ID cannot be found, it is regarded as an error and an order will not be accepted. - A
hash unit 62 on the store side hashes theproduct specifying data 106 and theID 201 by using the shared key 103 so as to obtain aserver hash value 205′ and sends thisserver hash value 205′ to arequest inspection unit 64. Therequest inspection unit 64 then compares thisserver hash value 205′ with thehash value 205 received from therequest receiving unit 60. The function of thehash unit 62 is identical to thehash unit 28 on the customer side, so that the hasvalue 205 and theserver hash value 205′ should coincide. If they do not coincide, it implies that either it is an order from a user who does not have the correct shared key or it is an improper order such as that in which a name of the product ordered by the other person has been altered. Note that, as will be described below, even if the software is sold without this check, a person who does not have the shared key cannot utilize this software anyway, but this check is still necessary because there can be a person who makes an improper order using the other person's name for the purpose of harassing that other person. - When the
hash value 205 and theserver hash value 205′ coincide, therequest inspection unit 64 notifies this fact to a softwaretransmission command unit 66. At this point, an occurrence of the purchase request (order) from the customer is legitimately proved, and the payment can be made. As for a specific manner of the payment, it suffices to use a method known in the conventional electronic payment, so that it description will be omitted. - Note that, strictly speaking, there can be a case in which the request transmission method described here is insufficient. For example, by wiretapping the communication and repeatedly transmitting the same request to the store, a person who does not have the shared key can make an improper order. This is an illegal act usually known as a replay attack, and it is known that this replay attack can be avoided by attaching an order time information or a serial number issued by the store to the request. Such cryptographic techniques can be employed in the present invention, but they are conventionally known so that their description will be omitted.
- The software
transmission command unit 66 sends the shared key 103 to asoftware encryption unit 70, and commands the transmission of the encrypted software to an encryptedsoftware transmission unit 72. Thesoftware encryption unit 70 encrypts acorresponding software 113 read out from asoftware storage unit 68 by using the shared key 103 to obtain anencrypted software 114, and the encryptedsoftware transmission unit 72 transmits theencrypted software 114 to the customer side. - Here, the encryption of the software is used for the purpose of casting the software into a form which cannot be directly executed or referred, so that there is no need to carry out the usual data encryption. For example, a computer program which has a mechanism of being not executable unless the password is entered can be considered as a kind of the encrypted software. In the following description, the encrypted software is assumed to have this broad meaning unless otherwise stated. The
encrypted software 114 transmitted from the store side is then stored into an encryptedsoftware storage unit 32 at the customer side. - This completes the description of the order section in this first embodiment.
- Next, the utilization section for actually utilizing the software in this first embodiment will be described.
- First, the shared key decryption unit (A)30 on the customer side decrypts the encrypted shared key 202 taken out from the shared
key storage unit 22 by using theauxiliary information 203 detected by the auxiliary information detection unit 8 so as to obtain the sharedkey 103. The operation up to this point is based on the same mechanism as that for taking out the shared key at a time of making an order. Asoftware decryption unit 34 then decrypts theencrypted software 114 taken out from the encryptedsoftware storage unit 32 by using the shared key 103 so as to obtain thesoftware 113. - By the above described procedure, it is possible to sell the software only to the legitimate user who actually notified necessary information such as a credit card number. In addition, the shared
key 103 is stored in an encrypted form obtained by using theauxiliary information 203, so that even when all of the shared key decryption unit (A) 30, the sharedkey storage unit 22 and the encryptedsoftware storage unit 32 are copied, it is impossible to make an illegal copy of the software. Moreover, it is also difficult to make an illegal copy of the software by analyzing the operation mechanism of the software, so that it actually becomes pointless to make an illegal copy by spending much effort and time. - Furthermore, unlike the conventional software distribution system in which no damage is incurred to a person who distributes illegal copies so that there was no effective way of preventing this illegal act, according to the software distribution system of this first embodiment, the shared
key 103 on which the encryption is based is a key for use in the execution of the software as well as a key for use in the purchase of the software, so that if a malicious user distributes illegal copies with his shared key set therein to the others, the others could then purchase new softwares by using that malicious user's credit card number so that there is a possibility of incurring an actual damage to a malicious user himself, and for this reason it is quite effective in preventing this type of illegal act. - Also, the software distribution system of this first embodiment adopts a scheme in which a user who has completed the user registration once can subsequently purchase softwares without being required to enter the credit card number as long as a user uses the same computer used for the user registration, which is convenient for a user, and yet at the same time, the charging can be made quite safely. In addition, in the software distribution system of this first embodiment, there is no need for a customer to have a uniquely assigned public key. In other words, the sales can be realized under a relatively loose condition that a customer is assumed to have his own credit card number.
- Also, as an application of the first embodiment, it is possible to apply this software utilization scheme only to a part of the software, rather than the software in its entirety. For example, FIG. 5 shows a partial configuration for realizing such an application case of the first embodiment, where a
core software unit 35 of FIG. 5 is a program corresponding to thesoftware decryption unit 34 of FIG. 2. - This
core software unit 35 is the main portion of the computer program which cannot be operated completely in this form. Further functions can be added to this main portion by adding the encrypted software to thiscore software unit 35. In other words, even when the encrypted software is executed by a person who has no right to decrypt this encrypted software, not all the functions of the software can be realized. - When the
core software unit 35 is executed, asoftware decryption unit 351 checks whether the encrypted software corresponding to thiscore software unit 35 exists in the encryptedsoftware storage unit 32 or not. If it exits, the correspondingencrypted software 114 is read out from the encryptedsoftware storage unit 32, decrypted by using the sharedkey 103, and a resulting decryptedsoftware 301 is stored into a decryptedsoftware loading unit 353. If the shared key 103 cannot be obtained, correct data cannot be stored into the decryptedsoftware loading unit 353. - The
core software unit 35 verifies that the decryptedsoftware 301 stored in the decryptedsoftware loading unit 353 is the correct data. Here, a method for realizing this verification can be a method for checking whether the decryptedsoftware 301 stored in the decryptedsoftware loading unit 353 is identical to data anticipated by the core software or not (i.e., whether it is correctly decrypted or not), or a method for executing the decryptedsoftware 301 stored in the decryptedsoftware loading unit 353 itself as a program, for example. - The advantages of this application case of the first embodiment are as follows.
- First, it is possible to set the core software portion as a limited function version of the software and only a charged portion of the software can be sold as the encrypted software. For example, the core software can be a word-processor without a printing function and a communication function, and the printing function and the communication function are to be sold as separate charged softwares. Using this scheme, the core software can be distributed for free through a freely accessible medium such as a CD-ROM or an electronic message board from which the core software can be acquired by anyone, and the charged portion can be purchased only when a user is satisfied with a trial use of the core software.
- In the conventional mail order sales, there is a system for protecting a customer called a cooling off period during which a customer can return the purchased product for free of charge because the product cannot be checked in advance, but in a case of dealing with the software which is in an intangible form, it is impossible to return the once purchased software. In this regard, it is possible to protect the customer by offering the core software shown in FIG. 5 as a sample version for trial use by the consumer, without a need for any cooling off period. After the actual trial use, the customer can purchase the other charged functions only when the customer is satisfied with the trial use. In addition, instead of providing one free portion and one charged portion, it is possible to offer more than one additional functions, so that the customer can purchase only the desired additional functions at appropriate price. In this manner, it is also possible to prevent an unfair trade practice to require the customer to purchase everything including those functions which are actually unnecessary for that customer.
- Also, an amount of data involved in the encryption and decryption can be reduced in this application case. In general, the calculation for the encryption or decryption takes a time in proportion to an amount of data involved, so that if a software in a very large size is sold by encrypting it one by one at a time of purchase, it would require a considerable amount of time for the purchase (downloading) and/or the execution (decryption). For this reason, a portion to be encrypted should be kept as small as possible.
- This requirement can be satisfied automatically by simply dividing a portion to be encrypted and a portion not to be encrypted if an amount of data for the charged additional function portion is very small. However, when the charged additional function portion is large or when the entire software is a charged one to be encrypted, the mechanism shown in FIG. 5 can be utilized by setting the core software such that the charged portion cannot function unless the encrypted software is decrypted even if the encrypted software itself is stored in the core software unit.
- Also, the reduction of an amount of data implies that the communication line can be a thin one. In other words, the downloading takes time in general when a communication line between the store and the customer for purchasing the charged information is slow, but if the core software portion was already distributed by a CD-ROM or acquired through the other high speed network, it suffices to acquire a small encrypted software portion alone, so that the purchase does not take much time.
- Moreover, this application case can also be utilized as another method for preventing the illegal copy. For example, when the software to be sold is in a form of a book, the software will be eventually converted into the character string data in a computer readable format on a memory, so that it is possible to steal such converted data from a memory rather easily. In such a case, the core software can be set as a software for reading the book, which reads the individual software (book) offered as a charged additional function and displays a content of the individual software on a screen. Then, by adopting a mechanism in which the core software decrypts and displays the necessary data (encrypted data) whenever a need arises, it becomes quite difficult to read out all the book data (characters) together.
- In addition, the decrypted software is going to be present on a memory only while the core software is executed, so that when a procedure for the core software to utilize the encrypted software is made very tedious, it is possible to improve the safety because it would require a considerable amount of effort and time to break the encryption of the software. In general, a software to be sold through a network is often a software which requires rather frequent version updating or an information with only a temporal value (such as a weather forecast information), so that when the safety level of the software is made very high, it becomes much more economical to purchase the software legitimately by paying the proper price rather than spending much effort and time to produce illegal copies of the software. Consequently, when the safety level is made very high, it becomes pointless to commit the illegal act, and the fair distribution of the software will be promoted.
- Note that, in the above description, it is assumed that the software is to be sold at some price, but the application of the present invention is not limited to such a case of selling the software at some price. For example, in a case of distributing a software whose export to a certain country is prohibited, the software distribution system of this first embodiment can be utilized in distributing such a software to specific customers alone according to the user information.
- It should also be obvious that a mechanism for charging a utilization fee for each occasion to utilize the software can be readily realized by a simple modification of the first embodiment described above to add the function of the order section to the core software unit of FIG. 5.
- It is also possible to realize the software distribution system of this first embodiment in a form of a software itself, by implementing the required procedures in forms of programs on a computer.
- Now, the major effects obtained by the software distribution system of this first embodiment will be summarized.
- In this first embodiment, at a time of purchasing the software, the software can be purchased in a manner convenient to the customer in which there is no need to spend effort and time in entering the credit card number, while the charging can be realized safely. Also, what is to be charged can be specified in a sophisticated manner, so that the sales at a price appropriate for a value of each software will be promoted.
- The consumer can create the shared key for enabling the purchase at a desired store at his own will by using the general purpose credit card, so that there is no need to memorize the membership number issued by each store, and the software can be purchased while keeping the credit card itself in safety. In addition, even if the shared key is stolen, the use of the shared key is quite limited so that the damage is kept minimum. This shared key has a lower generality than the usual credit card so that the potential damage is very low even if it is stolen. Moreover, there is no need to pay any money in advance unlike a case of using a prepaid card, and the user can create or discard the shared key according to the need at his own will.
- Moreover, the shared key is a key for use in the execution of the software as well as a key for use in the purchase of the software, so that it is both difficult as well as risky to make the illegal copy of the software, and consequently it becomes pointless to commit the illegal act so that the protection of the copyright owner's right can be realized easily.
- Note that one of the purposes of the present invention is to enable the install of the software without a tedious procedure. However, when a mechanism for realizing an easy install is provided, it also becomes easier to rewrite data of the individual customer such as program files, and there is a possibility of creating a security hall in which a malicious person steals the communication and offers false programs to the customer from a faked store. However, according to the software distribution system of this first embodiment, the software is provided in an encrypted form obtained by using the shared key which are only known to the store and the customer, so that even if a malicious person successfully offers the false programs to the customer illegally, the customer can easily detect this illegal act because the malignant false program data cannot be correctly decrypted by using the shared key. Thus, a malignant computer program called a virus which causes some harmful effects will not be installed according to this first embodiment, so that the safety of the software distribution can be improved.
- According to the software distribution system of this first embodiment, a shared key to be used when a software provider offers the encrypted software to a user is set in relation to the ID information related to the payment of the software fee, and a user who shares the shared key is not required to enter the ID information at every occasion of ordering the software, so that the software can be purchased through the network by a simple operation, while the software provider can realize the software distribution at a proper price safely. Moreover, the illegal copy of the software can actually incur damage to a malicious user, so that the illegal copy of the software can be prevented effectively.
- Referring now to FIG. 6 to FIG. 17, the second embodiment of a software distribution system according to the present invention will be described in detail.
- FIG. 6 shows an overall configuration of a software distribution system in this second embodiment, which generally comprises a
server 401 for selling softwares and aclient terminal 402 for purchasing softwares, which are connected through a network such as the Internet. - The software distribution system of FIG. 6 is a system for electronically distributing softwares to a user safely and conveniently, and charging fees for the distributed softwares. Namely, a user makes an access to the
server 401 through the network using a browser (not shown) of theclient terminal 402, for example, and transmits a purchase request for a desired software. At theserver 401, the requested software is downloaded into theclient terminal 402 while charging the user at the same time. At the user side, it is possible to purchase and install a desired software by simply manipulating a mouse (not shown) of the own terminal (client terminal). - Now, a user who wishes to use the software disitribution system of FIG. 6 first activates a registration software at the own client terminal402 (a personal computer, for instance).
- The registration software is a software for carrying out a prescribed system setting and a user registration to the
server 401. - The registration asoftware is stored in a registration
software storage unit 422 of theserver 401 in advance, and downloaded and immediately installed into theclient terminal 402 through the networ by a registration softwaredownload function unit 411. - A registration
software function unit 431 of theclient terminal 402 is a function unit which is set into an executable state at theclient terminal 402 as the registration software downloaded from theserver 401 is installed into theclient terminal 402, and which executes functions of the registration software. - Note that the registration software may be distributed to the user in advance by means of a recording medium such as a CD-ROM.
- When the registration
software function unit 431 is activated, the prescribed system setting is carried out first. - Next, the user registration to the
server 401 is carried out. Namely, the registrationsoftware function unit 431 first generates a session key and a shared key for encryption and decryption of a high security level information (a credit card number, an authentication information, etc.) to be transmitted between theserver 401 and theclient terminal 402, applies a prescribed encryption processing to the generated shared key, and stores the encrypted shared key in aninformation file 434. - In addition, according to a procedure displayed at the
client terminal 402, the user enters a personal information such as a name, an address, a credit card number, a valid period of a credit card, an age, a date of birth, etc., and this personal information is encrypted by using an encryption key which is predetermined between theserver 401 and theclient terminal 402 and transmitted to theserver 401 through the network. - At a registration software
admission function unit 412 of theserver 401, when the encrypted personal information and the key data are received, a decryption using a prescribed decryption key is carried out and a credibility inquiry with respect to a credit card company is carried out through acredibility inquiry unit 413. When the credibility is confirmed, the personal information and the key data are registered into a personal informationfile storage unit 424 through adatabase registration unit 414. (If the personal information and the key data are already written, they are updated to new data while a back-up of old data is made.) - When the user registration is finished normally and a notice about this fact is received, the
client terminal 402 installs a program to be activated at a time of software purchase by the user, that is, adownload program 435. Namely, thedownload program 435 is already downloaded along with the registration software, and thisdownload program 435 is outputted from the registrationsoftware function unit 431 and installed into theclient terminal 402. - A download
program function unit 432 of theclient terminal 402 is a function unit which is set into an executable state at theclient terminal 402 as the download program downloaded from theserver 401 is installed into theclient terminal 402, and which executes functions of the download program. - When the registration
software function unit 431 installs the download program, a setting for automatically activating the download program is made. This setting is made, for example, by registering a command for activating the download program when a prescribed identification information (which is assumed to be “Content-type: Application/ABC” in this second embodiment) is detected from a header portion of data received at theclient terminal 402 into a prescribed file. - This completes the user registration using functions provided in the registration software.
- Next, the operation of each function unit in the software distribution system at a time of downloading a desired software from the
server 401 will be described. - First, the user activates the browser of the
client terminal 402, for example, and makes an access to theserver 401 by manipulating the mouse and requests a desired software to theserver 401. - At an install list
transmission function unit 415 of theserver 401 which received this transmission request, an install list (a list describing which file should be installed how) corresponding to the software specified by the user is read out from an install list storage unit 425 and transmitted to theclient terminal 402. - When the install list is received, the
client terminal 402 activates the downloadprogram function unit 432 and transmits a request (download request) selected according to the install list to theserver 401. - At a download program
admission function unit 416 of theserver 401, a file is read out from one of a coresoftware storage unit 426, a passive functionfile storage unit 427 and alibrary storage unit 428 according to the request from theclient terminal 402, and when it is confirmed that this user is an already registered user by referring to the personal information stored in the personal informationfile storage unit 424, the read out file is transmitted to theclient terminal 402. At this point, the data compression (and the data encryption if necessary) is carried out. Also, when the file requested from theclient terminal 402 is a file to be charged, a prescribed charging processing is carried out by referring to the personal information stored in the personal informationfile storage unit 424. - The download program currently executed at the
client terminal 402 then receives the file from theserver 401, and if there is no error, this file is installed. - A core
software function unit 433 of theclient terminal 402 is a function unit which is set into an executable state at theclient terminal 402 as the software downloaded from theserver 401 is installed into theclient terminal 402, and which realizes prescribed information processing functions. This coresoftware function unit 433 is configured such that apre-installed core software 436 becomes fully functional as apassive function file 37 is incorporated by thecore software 436 at a time of its activation. - Note that a program to be downloaded can be a general program other than the core software and the passive function file, and such a general program will be downloaded from the
server 401 as alibrary 438. - An installed
information storage unit 501 of theclient terminal 402 registers an information (file names and version information) regarding files constituting thecore software 436 and thepassive function file 437 which are downloaded from theserver 401 and installed into theclient terminal 402. - Note that, as will be described below, a software product is formed by an active function file and a passive function file, where the passive function file is encrypted and then downloaded from the
server 401, and stored into theclient terminal 402 in the encrypted form. - When the core
software function unit 433 is activated, the installedinformation storage unit 501 is searched through to check whether the passive function file is already installed or not. When the related passive function file is already installed, this encrypted passive function file is decrypted, and the normal operation is executed by incorporating the decrypted passive function file. - Next, with reference to FIG. 7, an exemplary flow of the key data used in the software distribution system of FIG. 6 will be described. Here, an exemplary flow of data at a time of user registration as shown in FIG. 8 will also be referred whenever necessary.
- A random
number generation unit 451 provided in the registrationsoftware function unit 431 generates a random number as a shared key 461 to be shared between theserver 401 and theclient terminal 402. - This shared key461 is a key to be used for preventing the illegal copy of the software. This shared key 461 is encrypted by the secret key cryptosystem such as DES (Data Encryption Standard) for example, using a product ID uniquely assigned to each
client terminal 402 and then stored as akey file 452 in the information file 434 of theclient terminal 402. - Also, when a setting of a
password 462 at theclient terminal 402 is possible, thispassword 462 is hashed by using the sharedkey 461 and the obtained output is used as apurchase key 463. Here, thepurchase key 463 is a key to be used for the user authentication at a time of product (software) purchase. Here, if a password is not available, the shared key 461 itself can be directly used as thepurchase key 463. - The random
number generation unit 451 generates asession key 464 and a shared key 461 at theclient terminal 402 at a time of the user registration. - The
session key 464 is a key to be used at a time of encrypting the personal information and the key data (the sharedkey 461, the purchase key 463) by the secret key cryptosystem such as DES for example, at a time of the user registration. At this point, thesession key 464 is also encrypted by the public key cryptosystem such as RSA (Rivest Shamir Adleman) using apublic key 465 which is prescribed with respect to the software provider and included in the registration software, and then transmitted to theserver 401. - The encrypted personal information, key data (the shared
key 461, the purchase key 463) and session key 464 transmitted from theclient terminal 402 are received at theserver 401, the encrypted session key 464 is decrypted by the RSA first, and the encrypted personal information and key data are decrypted by the DES using the decryptedsession key 464. Thesession key 464 is then discarded. - At the
server 401, the decrypted personal information and key data are stored into the personal informationfile storage unit 424, while the credibility inquiry according to the personal information is carried out, as indicated in FIG. 8. - Note that, at a time of the credibility inquiry, a re-confirmation with respect to the
client terminal 402 may also be made via another route, according to the need. - FIG. 9 shows an exemplary data structure of the personal information to be stored in the personal information
file storage unit 424. As shown in FIG. 9, for each customer, the personal informationfile storage unit 424 records in correspondence the key data (the shared key, the purchase key) transmitted from theclient terminal 402, and the personal information including a credit card number and a private information such as a name and an address, and this information for users are recorded in an order of user registration. - The information stored in the personal information
file storage unit 424 will be referred in the user authentication, the credibility inquiry with respect to the credit card company, and the charging processing for the software when each registered user purchases the software product. - FIG. 10 shows an exemplary flow of the key data used in the software distribution system of FIG. 6 and an exemplary flow of data at a time of downloading the software product from the
server 401. - In the software product to be downloaded from the
server 1 to theclient terminal 402, the core software is not encrypted and immediately installed at same time as the downloading into theclient terminal 402 as already described. - On the other hand, at a time of downloading the passive function file, the
server 401 first carries out prescribed user authentication processing and charging processing with respect to a user who made the transmission request for that software, and encrypts the specified passive function file by using the sharedkey 461 of that user, and then downloads the encrypted passive function file to theclient terminal 402. - When the encrypted passive function file is received at the
client terminal 402, the encrypted passive function file is stored into a prescribed region (an encryptedsoftware storage unit 441 shown in FIG. 12) in the encrypted form. - When the core software is activated, the core software first decrypts the encrypted shared key461 stored in the
key file 452 by using theproduct ID 467, and decrypts the encrypted passive function file by using the decrypted shared key 461, and then incorporates the decrypted passive function file into itself. - Now, the features of the software product to be downloaded in the software distribution system of this second embodiment will be described with reference to FIG. 11.
- FIG. 11 shows a conceptual configuration of the software product in this second embodiment. As shown in FIG. 11, the software product generally comprises the core software (active function file)436 and the
passive function file 437. - The
core software 436 is a trial sample software in a function and validity limited version, which is operable by itself and which is to be offered for free. - The
passive function file 437 is to be provided in response to the user request, and used for a validity limit cancellation and a function addition (including a case of version updating) with respect to the already distributedcore software 436. Thispassive function file 437 is not operable by itself, and can be set operable by being incorporated into thecore software 436. Thepassive function file 437 is a data file or a program file which is normally fee charged, distributed to theclient terminal 402 in the encrypted form, and stored in the encrypted form at theclient terminal 402. - Also, the
core software 436 is normally formed by a plurality of files and usually has a larger size, while thepassive function file 437 usually has a relatively smaller size. - FIG. 12 shows a partial configuration for explaining the function of the core software in this second embodiment.
- This
core software 436 is not completely operable even when it is installed into theclient terminal 402, and further functions can be added to thiscore software 436 by incorporating the decryptedpassive function file 437 into thiscore software 436. - In other words, even when this software is executed by a person who has no right to decrypt this
passive function file 437, not all the functions of the software can be realized. - When the
core software 436 is executed, the installedinformation storage unit 501 is searched through to check whether the passive function file related to thiscore software 436 is already installed or not. When the related passive function file is already installed, this encrypted passive function file is read out from the encryptedsoftware storage unit 441, decrypted at asoftware decryption unit 436 a by using the sharedkey 461, and the resulting decryptedpassive function file 437 is stored into the decryptedsoftware loading unit 436 b. If the shared key 461 cannot be obtained at this point, correct data cannot be stored into the decryptedsoftware loading unit 436 b. - The
core software 436 verifies that thepassive function file 437 stored the decryptedsoftware loading unit 436 b is the correct data. Here, a method for realizing this verification can be a method for checking whether thepassive function file 437 stored in the decryptedsoftware loading unit 436 b is identical to data anticipated by thecore software 435 or not (i.e., whether it is correctly decrypted or not), or a method for executing thepassive function file 437 stored in the decryptedsoftware loading unit 436 b itself as a program, for example. - The advantages of using this software product configuration for separately distributing the core software and the passive function file are as follows.
- First, only a charged portion of the software can be sold as the passive function file. For example, the core software can be a word-processor without a printing function and a communication function, and the printing function and the communication function are to be sold as separate charged softwares. Using this scheme, the core software can be distributed for free through a freely accessible medium such as a CD-ROM or an electronic message board from which the core software can be acquired by anyone, and the charged portion can be purchased only when a user is satisfied with a trial use of the core software.
- In the conventional mail order sales, there is a system for protecting a customer called a cooling off period during which a customer can return the purchased product for free of charge because the product cannot be checked in advance, but in a case of dealing with the software which is in an intangible form, it is impossible to return the once purchased software. In this regard, it is possible to protect the customer by offering the core software as a sample version for trial use by the consumer, without a need for any cooling off period. After the actual trial use, the customer can purchase the other charged functions (passive function file) only when the customer is satisfied with the trial use. In addition, instead of providing one free portion and one charged portion, it is possible to offer more than one additional functions, so that the customer can purchase only the desired additional functions at appropriate price. In this manner, it is also possible to prevent an unfair trade practice to require the customer to purchase everything including those functions which are actually unnecessary for that customer.
- Also, an amount of data involved in the encryption and decryption can be reduced in this application case. In general, the calculation for the encryption or decryption takes a time in proportion to an amount of data involved, so that if a software in a very large size is sold by encrypting it one by one at a time of purchase, it would require a considerable amount of time for the purchase (downloading) and/or the execution (decryption). For this reason, a portion to be encrypted should be kept as small as possible.
- Also, the reduction of an amount of data implies that the communication line can be a thin one. In other words, the downloading takes time in general when a communication line between the store and the customer for purchasing the charged information is slow, but if the core software was already distributed by a CD-ROM or acquired through the other high speed network, it suffices to acquire a small passive function file alone, so that the purchase does not take much time.
- Moreover, this software product configuration can also be utilized as a measure for preventing the illegal copy. Namely, at the
client terminal 402, the shared key 261 to be used in decrypting thepassive function file 437 is stored in an encrypted form obtained by using theproduct ID 467, so that the decryptedpassive function file 437 is present on a memory only while thecore software 436 is executed. Consequently, even when all of thekey file 452, thecore software 436, and the encryptedpassive function file 437 are copied, it is impossible to execute an illegally copied software unless theproduct ID 467 is also obtained. Moreover, it is also difficult to make an illegal copy of the software by analyzing the operation mechanism of the software, so that it actually becomes pointless to make an illegal copy by spending much effort and time. - For example, when the software to be sold is in a form of a book, the software will be eventually converted into the character string data in a computer readable format on a memory, so that it is possible to steal such converted data from a memory rather easily. In such a case, the
core software 436 can be set as a software for reading the book, which reads the individual software (book) offered as thepassive function file 437 and displays a content of the individual software on a screen. Then, by adopting a mechanism in which thecore software 436 decrypts and displays the necessary data (encrypted data) whenever a need arises, it becomes quite difficult to read out all the book data (characters) together. - In addition, the decrypted
passive function file 437 is going to be present on a memory only while thecore software 436 is executed, so that when a procedure for thecore software 436 to utilize thepassive function file 437 is made very tedious, it is possible to improve the safety because it would require a considerable amount of effort and time to break the encryption of the software. - In general, a software to be sold through a network is often a software which requires rather frequent version updating or an information with only a temporal value (such as a weather forecast information), so that when the safety level of the software is made very high, it becomes much more economical to purchase the software legitimately by paying the proper price rather than spending much effort and time to produce illegal copies of the software. Consequently, when the safety level is made very high, it becomes pointless to commit the illegal act, and the fair distribution of the software will be promoted.
- Next, with reference to FIG. 13, the detailed processing procedure at a time of downloading a desired software from the
server 401, i.e., the processing procedure of the downloadprogram function unit 432, will be described. - First, the user activates the browser of the
client terminal 402, for example, and makes an access to theserver 401 by manipulating the mouse and requests a desired software to theserver 401. At this point, theclient terminal 402 obtains an information on the environment of theclient terminal 402 such as a type and a version of OS, a type of browser, etc., and transmits this information to theserver 401 as an automatic environment judgement result. This automatic environment judgement result is provided as an option at a time of requesting the software. A function for obtaining and transmitting this information on the environment is usually provided in the browser for general use (step S1). - At the install list
transmission function unit 415 of theserver 401 which received this transmission request, an install list (a list describing which file should be installed how) corresponding to the software specified by the user is read out from the install list storage unit 425 and transmitted to the client terminal 402 (step S2). - At this point, the
server 401 knows the environment of theclient terminal 402 according to the automatic environment judgement result received from theclient terminal 402 as an option, so that theserver 401 can change the install list to be transmitted to theclient terminal 402 according to the environment of theclient terminal 402. For example, for theclient terminal 402 using a specific OS, the install list of softwares that can be operated by that specific OS will be transmitted. - FIG. 14 shows an exemplary data configuration transmitted from the
server 401 at this point, which generally comprises a header portion and a data portion. - The header portion contains an identification information471 (Content-type: Application/ABC) such that the download program will be automatically activated when this
identification information 471 is detected at theclient terminal 402. (This setting is already made when the registrationsoftware function unit 431 installs the download program.) - The data portion has an install list inserted therein in this example. As shown in FIG. 14, the install list is formed by the latest version of the download program (Download-version), an address information for the server401 (URL, for example), and a plurality of commands.
- The commands are used for notifying functions selected by the user's clicking of the mouse to the download program. For example, there is an install command (either for the core software or the passive function file) as shown in FIG. 15, which describes which file should be installed how. A concrete example of such an install command is shown in FIG. 16.
- The install command shown in FIG. 16 indicates that “
Revision 3” of “dic2” function of “version 1” of the file name “MT” is required, and this file should be transmitted in three divided parts, where an amount of transmission is 512 Kbytes for the first one and the second one, while it is 139 Kbytes for the third one, and a total capacity of a file obtained by concatenating and de-compressing these three parts is 7439 Kbytes. Using such an install command as shown in FIG. 15, it becomes possible to download the software in divisions. Note that the collective download can also be specified by setting “n=1” in the division specification field of FIG. 15. - The commands also includes a command for displaying a version updating information for the software purchased by the user. If a file specified in this command is not installed, this command sets an execution of a subsequent install command as an error. This is used at a time of selling the passive function file, in order to confirm that the corresponding core software is already installed and normally operating.
- Next, when the install list transmitted from the
server 401 at the step S2 is received, theclient terminal 402 detects theidentification information 471 contained in the header portion of FIG. 14 and activates the download program. Then, the latest version (Download-version) of the download program contained in the received install list is checked (step S3). If the latest version has been updated, the download of the download program in the latest version is requested to the server 401 (step S4). In response, theserver 401 reads out a file of the download program in the latest version from a prescribed software storage unit, and downloads this file into theclient terminal 402 without encrypting this file (step S5). - When a file of the download program in the latest version is received at the
client terminal 402, the downloading of this file is handled differently from the downloading of the other files. Namely, the currently executed download program is not to be overwritten, and when the currently executed download program is installed under a name of “download1”, for example, the download program in the latest version is installed under a name of “download2”, and a setting file for realizing the automatic execution of the download program is also rewritten. Then, data processed by the currently executed download program “download1” are given to the download program in the latest version “download2” as they are, and the download program in the latest version is activated. Consequently, after the version updating, there are always two program files “download1” and “download2”. - The reason for handling this version updating to the download program in the latest version differently from the downloading of the other files is that the processing contents of the currently executed download program are not going to be renewed even when a new file is overwritten onto the currently executed download program.
- Next, at the
client terminal 402, the version information for the files (core software, passive function file) constituting the software specified by the user which is described in the install list is compared with the version information for the file registered in the installedinformation storage unit 501, so as to check whether there is any file whose version has been updated, or whether there is any new additional function file (passive function file) in the install list. When such a file exists, a download request with a prescribed header information for the necessary file attached thereto is transmitted to the server 401 (step S6). - Here, the download request contains an information on the version of the currently installed file, for example. Also, the header information includes an information (such as the purchase key, for example) for indicating that the user registration is already completed,
- When the
server 401 receives the download request from theclient terminal 402, and recognizes that this user is an already registered user according to the header information of the download request, the processing for the received download request is executed, and the downloading of the specified file is carried out in a format shown in FIG. 17 (step S7). - In FIG. 17, a type of data to be transmitted is described in a “transmission format” field. For example, “0” indicates a collective transmission of an entire file, “1” indicates a collective transmission of a remainder of data, “2” indicates a transmission of an entire file in divisions, and “3” indicates a transmission of a remainder of data in divisions.
- Also, a file to be inserted into a “data” field may be compressed by a prescribed compression program. In such a case, the de-compression program may be contained in the download program or may be provided as an external program to be read separately.
- Also, a “data size” field indicates a size of data in the “data” field, a “MASK” field indicates a mask to be applied to the shared key, a “check sum” field indicates a check sum with respect to the data (non-encrypted) in the “data” field, and a “hash value” field indicates a hash value obtained by applying the hash function on all of the data size, data, check sum, and MASK field contents. Here, the hash value is used so that the download program can detect an error when the hash value is not correct. Note that, when the “MASK” field has “0”, it implies that the file in the “data” field of this format is not to be encrypted.
- At the
server 401, after the file is transmitted, if the transmitted file is a fee charged one, the credit card number of this user is obtained by referring to the personal informationfile storage unit 424 by using the purchase key as a search key, and the credibility inquiry to the credit card company and the charging processing are carried out according to the obtained credit card number. - Also, at a time of downloading, a part which is required to be encrypted is encrypted by the pre-registered shared key.
- Here, if the download fails in a middle (for a reason such as a disconnection of a communication line, for instance) while the charging is successfully made, this download failure can be simply ignored. It suffices to carry out the downloading again without carrying out the charging processing when this user makes the same purchase operation again.
- Now, the various effects of the software distribution system in this second embodiment as described above will be summarized.
- (1) Automatic Install Function
- The automatic environment judgement result obtained at the
client terminal 402 is transmitted to theserver 401, and theserver 401 distributes the suitable software according to this automatic environment judgement result. Then, at theclient terminal 402, the downloaded file is installed immediately when it is received, by the installer provided in the download program. In this manner, the install can be realized easily and surely even when the user does not have a thorough knowledge of the personal computer. - In addition, at a time of automatically installing the file downloaded from the
server 401, the download program at theclient terminal 402 executes the processing by recognizing the identification information set at a time of the user registration, so that there is no danger for introducing a computer virus. - (2) Automatic Charging Function
- An information such as a credit card number is registered in the
server 401 at a time of the user registration, so that at a time of purchasing the software, it suffices to transmit only a purchase request for a desired software. Then, by utilizing the on-line credibility inquiry using the registered credit card number, the charging is immediately carried out at theserver 401. Consequently, the user is only required to make some mouse clicking in purchasing the software, so that this scheme is suitable for the sales of cheap softwares. In addition, there is no need to enter the credit card number at every occasion of purchase, so that the safety level is improved. - (3) Automatic Version Updating Function
- The download program at the
client terminal 402 checks whether a version of a file already installed into that terminal has been updated or not by referring to the install list transmitted from theserver 401, and a result of this checking is presented to the user. According to this checking result, the user can easily makes the download request for the necessary file by simply manipulating the mouse. In addition, only the necessary portion is downloaded from theserver 401, so that an amount of communication can be reduced and the communication line cost can be saved. - (4) Trial Use of Software
- The user is allowed to make a trial use of a free trial sample version (core software) of the software first, and then the user purchases a fee charged software portion (passive function file) for enabling the regular operation which is to be incorporated into the core software. Consequently, a trouble or dissatisfaction regarding the purchased software product can be eliminated, so that this scheme is suitable for the sales of electronic information which is not returnable.
- (5) Illegal Copy Prevention Function
- The fee charged software portion (passive function file) is stored in an encrypted form at a time of being downloaded from the
server 401 and installed into theclient terminal 402, and this passive function file is decrypted by a decryption and incorporation function of the core software at a time of each software activation in order to convert the software into an executable form. Here, the shared key uniquely assigned to the user is used in the decryption, and this shared key is stored in an encrypted form obtained by using the product ID which is uniquely defined at theclient terminal 402. Consequently, even when all of thekey file 452, thecore software 436, and the encryptedpassive function file 437 are illegally copied, it is impossible to execute the illegally copied software unless the product ID is also obtained. - (6) Version Updating for Download Program
- The download program at the
client terminal 402 checks a version information for the download program which is described in the install list transmitted from theserver 401, and automatically requests the download of the download program in the latest version to theserver 401 if the version has been updated, In this manner, the version updating of the download program can be realized easily, and consequently an addition of types of commands to be described in the install list becomes easier. - (7) Software Downloading in Divisions
- In a case of downloading the software in a large size, the
server 401 can try to transmit such a software in divisions. Namely, the downloading in divisions is commanded by the install command described in the install list in such a case. In this manner, when the downloading fails as a trouble occurs in the communication line between theserver 401 and theclient terminal 402, a procedure to retry the downloading can be made simpler. - Note that, in the above description, it is assumed that the passive function portion of the software is to be sold as a fee charged software, but this second embodiment is not necessarily limited to this case, and the passive function portion can be provided as a free additional function to the active function portion. In such a case, it is not absolutely necessary to carry out the encryption of the passive function portion.
- It is to be noted that, in the present invention described above, the encryption/decryption by using the shared key is not necessarily limited to the encryption/decryption using the shared key as encryption/decryption key. For example, it is possible to provide a table of correspondence between the shared key and a separate key for encryption/decryption, where the correspondence is guaranteed in some suitable manner, and carry out the actual encryption/decryption by using this separate key (which is related to the shared key) instead of using the shared key itself. This meaning of the encryption/decryption by using the shared key is intended in the appended claims as well, so that the encryption/decryption by using the shared key should be construed to cover not only a case of carrying out the actual encryption/decryption using the shared key itself as encryption/decryption key, but also a case of carrying out the actual encryption/decryption using a key data related to the shared key as encryption/decryption key.
- It is also to be noted that, besides those already mentioned above, many modifications and variations of the above embodiments may be made without departing from the novel and advantageous features of the present invention. Accordingly, all such modifications and variations are intended to be included within the scope of the appended claims.
Claims (16)
1. A method for utilizing a software, comprising the steps of:
storing a shared key shared between a software provider and a user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user;
requesting a desired software from the user to the software provider, and receiving the desired software in an encrypted form from the software provider;
decrypting the desired software received from the software provider by using the shared key stored at the storing step; and
utilizing the desired software in a decrypted form.
2. The method of , wherein the guaranteed correspondence between the shared key and the ID information is established by the steps of:
claim 1
generating the shared key at a user side;
encrypting the shared key at the user side by using a public key corresponding to a secret key of the software provider and sending the shared key in an encrypted form from the user side to the software provider; and
encrypting the ID information at the user side by using the shared key and sending the ID information in an encrypted form from the user side to the software provider.
3. The method of , wherein the guaranteed correspondence between the shared key and the ID information is established by the steps of:
claim 1
generating the shared key at a user side; and
encrypting the shared key and the ID information at the user side by using a public key corresponding to a secret key of the software provider and sending the shared key and the ID information in an encrypted form from the user side to the software provider.
4. The method of , wherein the storing step stores the shared key by obtaining an auxiliary information regarding a software utilization, encrypting the shared key by using the auxiliary information, and storing the shared key in an encrypted form, and
claim 1
the decrypting step decrypts the desired software by obtaining the auxiliary information, decrypting the shared key in an encrypted form by using the auxiliary information, and decrypting the desired software by using the shared key in a decrypted form.
5. The method of , wherein the utilizing step utilizes the desired software in executing another already provided software.
claim 1
6. A software distribution system in which a desired software is provided in an encrypted form from a software provider to a user, comprising:
shared key storage units provided at both a software provider side and a user side, for storing a shared key shared between the software provider and the user, the shared key having a guaranteed correspondence with an ID information regarding a payment of a software fee by the user;
a request transmission unit provided at the user side, for transmitting a request for the desired software to the software provider side;
a software encryption unit provided at the software provider side, for encrypting the desired software by using the shared key stored in the shared key storage unit on the software provider side;
an encrypted software transmission unit provided at the software provider side, for transmitting the desired software in an encrypted form to the user side; and
a software decryption unit provided at the user side, for receiving the desired software in an encrypted form from the software provider, decrypting the desired software received from the software provider by using the shared key stored in the shared key storage unit on the user side, so as to obtain the desired software in a decrypted form that can be utilized at the user side.
7. The system of , further comprising:
claim 1
a request inspection unit provided at the software provider side, for inspecting whether the request for the desired software is proper or not by using the shared key stored in the shared key storage unit on the software provider side; and
a software transmission command unit provided at the software provider side, for commanding an execution of an encryption by the software encryption unit and a transmission by the encrypted software transmission unit when the request inspection unit judges that the request for the desired software is proper.
8. The system of , further comprising:
claim 6
a shared key generation unit provided at the user side, for generating the shared key;
a shared key encryption unit provided at the user side, for encrypting the shared key by using a public key corresponding to a secret key of the software provider and sending the shared key in an encrypted form to the software provider; and
an ID information encryption unit provided at the user side, for encrypting the ID information by using the shared key and sending the ID information in an encrypted form to the software provider, so as to establish the guaranteed correspondence between the shared key and the ID information.
9. The system of , further comprising:
claim 6
a shared key generation unit provided at the user side, for generating the shared key; and
a shared key and ID information encryption unit provided at the user side, for encrypting the shared key and the ID information by using a public key corresponding to a secret key of the software provider and sending the shared key and the ID information in an encrypted form to the software provider, so as to establish the guaranteed correspondence between the shared key and the ID information.
10. The system of , wherein the shared key storage unit on the user side stores the shared key by obtaining an auxiliary information regarding a software utilization, encrypting the shared key by using the auxiliary information, and storing the shared key in an encrypted form, and
claim 6
the software decryption unit decrypts the desired software by obtaining the auxiliary information, decrypting the shared key in an encrypted form by using the auxiliary information, and decrypting the desired software by using the shared key in a decrypted form.
11. A software distribution system in which a desired software is provided from a software provider to a user through a network, comprising:
a client terminal on a user side, which is connected with a server on a software provider side through the network, and including:
a registration unit for registering a user charging information and a shared key shared between the software provider and the user into the server;
a request unit for sending a request for a desired software to the server; and
an install unit for installing each software downloaded from the server in response to the request sent by the request unit; and
a server on the software provider side, including:
a charging processing unit for carrying out a charging processing according to the user charging information registered by the registration unit, when the desired software requested by the request is a fee charged software; and
a download unit for downloading a software in response to the request sent by the request unit, the software to be downloaded being encrypted by using the shared key registered by the registration unit when the software to be downloaded is required to be encrypted.
12. The system of , wherein each software provided by the software provider comprises an active function portion which is independently operable and which is provided from the server for free at a time of a software purchase by the user, and a passive function portion which becomes operable by being incorporated into the active function portion and which is fee charged, and
claim 11
the charging processing unit carries out the charging processing when the request sent by the request unit is requesting the passive function portion.
13. The system of , wherein each software provided by the software provider comprises an active function portion which is independently operable, and a passive function portion which becomes operable by being incorporated into the active function portion,
claim 11
the downloading unit downloads the passive function portion in an encrypted form obtained by using the shared key; and
the install unit installs the passive function portion and the active function portion so that, the passive function portion installed by the install unit is stored in an encrypted form, and the active function portion installed by the install unit decrypts the passive function portion in an encrypted form by using the shared key and incorporates the passive function form in a decrypted form, each time the active function portion is activated at the client terminal.
14. The system of , wherein the client terminal further includes:
claim 11
a key management unit for generating the shared key, encrypting the shared key by using a code information uniquely defined for the client terminal, and storing the shared key in an encrypted form.
15. The system of , wherein the download unit downloads a software which is selected according to an environment judgement result for the client terminal notified from the client terminal to the server in advance.
claim 11
16. The system of , wherein the server further includes:
claim 11
a list providing unit for providing the user with a list information containing a version information for each software that can be provided to the user, in response to a request for the list information from the client terminal, so that the request sent by the request unit requests the desired software selected according to the list information.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/738,857 US6332025B2 (en) | 1996-03-11 | 2000-12-18 | Software distribution system and software utilization scheme for improving security and user convenience |
Applications Claiming Priority (5)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP05340796A JP3486043B2 (en) | 1996-03-11 | 1996-03-11 | Operating method of software distribution system and software system |
JPP08-053407 | 1996-03-11 | ||
US08/814,538 US6195432B1 (en) | 1996-03-11 | 1997-03-10 | Software distribution system and software utilization scheme for improving security and user convenience |
JP8-053407 | 1997-03-10 | ||
US09/738,857 US6332025B2 (en) | 1996-03-11 | 2000-12-18 | Software distribution system and software utilization scheme for improving security and user convenience |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/814,538 Continuation US6195432B1 (en) | 1996-03-11 | 1997-03-10 | Software distribution system and software utilization scheme for improving security and user convenience |
Publications (2)
Publication Number | Publication Date |
---|---|
US20010000709A1 true US20010000709A1 (en) | 2001-05-03 |
US6332025B2 US6332025B2 (en) | 2001-12-18 |
Family
ID=12941978
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/814,538 Expired - Lifetime US6195432B1 (en) | 1996-03-11 | 1997-03-10 | Software distribution system and software utilization scheme for improving security and user convenience |
US09/738,857 Expired - Fee Related US6332025B2 (en) | 1996-03-11 | 2000-12-18 | Software distribution system and software utilization scheme for improving security and user convenience |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/814,538 Expired - Lifetime US6195432B1 (en) | 1996-03-11 | 1997-03-10 | Software distribution system and software utilization scheme for improving security and user convenience |
Country Status (3)
Country | Link |
---|---|
US (2) | US6195432B1 (en) |
EP (1) | EP0795809A3 (en) |
JP (1) | JP3486043B2 (en) |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020054365A1 (en) * | 2000-07-25 | 2002-05-09 | Murata Kikai Kabushiki Kaisha | Server device and communication method |
US20020091547A1 (en) * | 2000-10-31 | 2002-07-11 | Yasuhiro Ohe | Medical software providing method, method for transacting option part for medical image diagnostic device, medical software providing system, and system for transacting option part for medical image diagnostic device |
US20030016829A1 (en) * | 2001-06-15 | 2003-01-23 | Samsung Electronics Co. Ltd. | System and method for protecting content data |
US20040148221A1 (en) * | 2003-01-24 | 2004-07-29 | Viva Chu | Online game advertising system |
US20040199600A1 (en) * | 2001-10-16 | 2004-10-07 | Dorundo Alan D. | Method and apparatus for program installation in a modular network |
US20060236091A1 (en) * | 2005-03-28 | 2006-10-19 | Tadashi Kaji | Encryption method for SIP message and encrypted SIP communication system |
US20080217407A1 (en) * | 2005-05-17 | 2008-09-11 | Friedrich Karl Ackermann | Host Apparatus and Method Providing Calibration and Reagent Information to a Measurement Apparatus with Makes Use of a Consumable Reagent in a Measuring Process |
US20080288770A1 (en) * | 2001-05-23 | 2008-11-20 | Kline Paul A | System and method for a commercial multimedia rental and distribution system |
US20080298590A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Network encryption key rotation |
US20090036095A1 (en) * | 2007-07-30 | 2009-02-05 | Lsi Corporation | Information security and delivery method and apparatus |
SG160256A1 (en) * | 2008-09-29 | 2010-04-29 | Ngee Ann Polytechnic | Software activation and copy protection method |
US20100180079A1 (en) * | 2005-12-30 | 2010-07-15 | Vmware, Inc. | Notifying software components using a shared physical storage medium |
US20100257612A1 (en) * | 2009-04-07 | 2010-10-07 | Mcguire Kevin M | Token-based payment processing system |
US8090618B1 (en) * | 2002-12-12 | 2012-01-03 | Massive Incorporated | Online game commerce system |
US20120254198A1 (en) * | 2006-10-18 | 2012-10-04 | Google Inc. | Online Ranking Metric |
US8763142B2 (en) | 2009-04-07 | 2014-06-24 | Princeton Payment Solutions | Tokenized payment processing schemes |
US20150332307A1 (en) * | 2003-03-13 | 2015-11-19 | Intel Corporation | System And Method For The Distribution Of Software Products |
Families Citing this family (229)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6266654B1 (en) * | 1992-12-15 | 2001-07-24 | Softlock.Com, Inc. | Method for tracking software lineage |
US7831516B2 (en) * | 1992-12-15 | 2010-11-09 | Sl Patent Holdings Llc | System and method for redistributing and licensing access to protected information among a plurality of devices |
US7089212B2 (en) * | 1992-12-15 | 2006-08-08 | Sl Patent Holdings Llc | System and method for controlling access to protected information |
US8661477B2 (en) | 1994-10-12 | 2014-02-25 | Touchtunes Music Corporation | System for distributing and selecting audio and video information and method implemented by said system |
WO1996012255A1 (en) | 1994-10-12 | 1996-04-25 | Technical Maintenance Corporation | Intelligent digital audiovisual playback system |
US7188352B2 (en) | 1995-07-11 | 2007-03-06 | Touchtunes Music Corporation | Intelligent digital audiovisual playback system |
US7424731B1 (en) | 1994-10-12 | 2008-09-09 | Touchtunes Music Corporation | Home digital audiovisual information recording and playback system |
FR2753868A1 (en) | 1996-09-25 | 1998-03-27 | Technical Maintenance Corp | METHOD FOR SELECTING A RECORDING ON AN AUDIOVISUAL DIGITAL REPRODUCTION SYSTEM AND SYSTEM FOR IMPLEMENTING THE METHOD |
US6802061B1 (en) * | 1996-12-12 | 2004-10-05 | Microsoft Corporation | Automatic software downloading from a computer network |
US6073124A (en) * | 1997-01-29 | 2000-06-06 | Shopnow.Com Inc. | Method and system for securely incorporating electronic information into an online purchasing application |
US7574727B2 (en) * | 1997-07-23 | 2009-08-11 | Touchtunes Music Corporation | Intelligent digital audiovisual playback system |
US6233567B1 (en) * | 1997-08-29 | 2001-05-15 | Intel Corporation | Method and apparatus for software licensing electronically distributed programs |
FR2769165B1 (en) | 1997-09-26 | 2002-11-29 | Technical Maintenance Corp | WIRELESS SYSTEM WITH DIGITAL TRANSMISSION FOR SPEAKERS |
JP3906535B2 (en) * | 1997-11-07 | 2007-04-18 | ソニー株式会社 | Download system and recording medium |
JP3296767B2 (en) | 1997-11-13 | 2002-07-02 | 株式会社ジャストシステム | Online merchandise management system, server system, terminal device, management method in online merchandise management system, and computer-readable recording medium storing program for causing a computer to execute the method |
US6406336B1 (en) | 1998-01-20 | 2002-06-18 | Fci Americas Technology, Inc. | Contact with anti-skiving feature |
US6170014B1 (en) * | 1998-03-25 | 2001-01-02 | Community Learning And Information Network | Computer architecture for managing courseware in a shared use operating environment |
US7246246B2 (en) | 1998-04-17 | 2007-07-17 | Iomega Corporation | System for keying protected electronic data to particular media to prevent unauthorized copying using a compound key |
US6339826B2 (en) | 1998-05-05 | 2002-01-15 | International Business Machines Corp. | Client-server system for maintaining a user desktop consistent with server application user access permissions |
FR2781582B1 (en) | 1998-07-21 | 2001-01-12 | Technical Maintenance Corp | SYSTEM FOR DOWNLOADING OBJECTS OR FILES FOR SOFTWARE UPDATE |
FR2781580B1 (en) | 1998-07-22 | 2000-09-22 | Technical Maintenance Corp | SOUND CONTROL CIRCUIT FOR INTELLIGENT DIGITAL AUDIOVISUAL REPRODUCTION SYSTEM |
US8028318B2 (en) | 1999-07-21 | 2011-09-27 | Touchtunes Music Corporation | Remote control unit for activating and deactivating means for payment and for displaying payment status |
FR2781591B1 (en) | 1998-07-22 | 2000-09-22 | Technical Maintenance Corp | AUDIOVISUAL REPRODUCTION SYSTEM |
US6226618B1 (en) * | 1998-08-13 | 2001-05-01 | International Business Machines Corporation | Electronic content delivery system |
WO2000029928A1 (en) * | 1998-11-13 | 2000-05-25 | Iomega Corporation | System for keying protected electronic data to particular media using a compound key to prevent unauthorized copying |
US6510466B1 (en) * | 1998-12-14 | 2003-01-21 | International Business Machines Corporation | Methods, systems and computer program products for centralized management of application programs on a network |
US6324578B1 (en) | 1998-12-14 | 2001-11-27 | International Business Machines Corporation | Methods, systems and computer program products for management of configurable application programs on a network |
JP4132334B2 (en) * | 1998-12-28 | 2008-08-13 | 株式会社日立製作所 | Method for preventing unauthorized use of digital content, system for implementing the method, and medium recording the processing program |
US6917923B1 (en) * | 1999-02-01 | 2005-07-12 | Samsung Electronics Co., Ltd. | Approved web site file downloading |
US8538801B2 (en) | 1999-02-19 | 2013-09-17 | Exxonmobile Research & Engineering Company | System and method for processing financial transactions |
US8726330B2 (en) | 1999-02-22 | 2014-05-13 | Touchtunes Music Corporation | Intelligent digital audiovisual playback system |
US7743412B1 (en) * | 1999-02-26 | 2010-06-22 | Intel Corporation | Computer system identification |
FI990461A0 (en) * | 1999-03-03 | 1999-03-03 | Nokia Mobile Phones Ltd | Procedure for loading programs from a server to a subscriber terminal |
US6401239B1 (en) * | 1999-03-22 | 2002-06-04 | B.I.S. Advanced Software Systems Ltd. | System and method for quick downloading of electronic files |
US6546492B1 (en) * | 1999-03-26 | 2003-04-08 | Ericsson Inc. | System for secure controlled electronic memory updates via networks |
US6829708B1 (en) | 1999-03-27 | 2004-12-07 | Microsoft Corporation | Specifying security for an element by assigning a scaled value representative of the relative security thereof |
US7319759B1 (en) * | 1999-03-27 | 2008-01-15 | Microsoft Corporation | Producing a new black box for a digital rights management (DRM) system |
US6889208B1 (en) * | 1999-04-15 | 2005-05-03 | Victor Company Of Japan, Ltd. | Contents sale system |
FR2793050B1 (en) * | 1999-04-28 | 2001-08-17 | Fingerprint | METHOD FOR SECURING USER SOFTWARE FROM A SECRET PROCESSING AND STORING UNIT AND SYSTEM USING THE SAME |
FR2793049B1 (en) | 1999-04-28 | 2001-08-17 | Fingerprint | METHOD FOR SECURING THE USE OF SOFTWARE FROM A SECRET PROCESSING AND STORING UNIT AND SYSTEM USING THE SAME |
US8050964B2 (en) * | 1999-05-06 | 2011-11-01 | Etagz, Inc. | Computer-readable medium product label apparatus and method |
US6424950B1 (en) * | 1999-05-10 | 2002-07-23 | Xerox Corporation | Remote feature delivery for output devices |
JP2000330783A (en) | 1999-05-20 | 2000-11-30 | Nec Corp | Software illegal copy prevention system and recording medium with software illegal copy prevention program recorded thereon |
US6882979B1 (en) * | 1999-06-18 | 2005-04-19 | Onadine, Inc. | Generating revenue for the use of softgoods that are freely distributed over a network |
JP4083925B2 (en) * | 1999-06-24 | 2008-04-30 | 株式会社日立製作所 | Information processing apparatus, card member, and information processing system |
AU6061300A (en) * | 1999-06-30 | 2001-01-31 | Ac Properties B.V. | A system, method and article of manufacture for an electronic software distribution, post-download payment scheme with encryption capabilities |
AU5910800A (en) * | 1999-06-30 | 2001-01-31 | Accenture Llp | A system, method and article of manufacture for tracking software sale transactions of an internet-based retailer for reporting to a software publisher |
FR2796482B1 (en) | 1999-07-16 | 2002-09-06 | Touchtunes Music Corp | REMOTE MANAGEMENT SYSTEM FOR AT LEAST ONE AUDIOVISUAL INFORMATION REPRODUCING DEVICE |
US7181629B1 (en) * | 1999-08-27 | 2007-02-20 | Fujitsu Limited | Data distribution system as well as data supply device terminal device and recording device for the same |
US7310735B1 (en) * | 1999-10-01 | 2007-12-18 | International Business Machines Corporation | Method, system, and program for distributing software between computer systems |
WO2002095545A2 (en) * | 2001-04-20 | 2002-11-28 | Ponoi Corp. | System and method for secure and private communication |
US7437550B2 (en) | 1999-12-02 | 2008-10-14 | Ponoi Corp. | System for providing session-based network privacy, private, persistent storage, and discretionary access control for sharing private data |
US7047411B1 (en) | 1999-12-17 | 2006-05-16 | Microsoft Corporation | Server for an electronic distribution system and method of operating same |
US6970849B1 (en) | 1999-12-17 | 2005-11-29 | Microsoft Corporation | Inter-server communication using request with encrypted parameter |
US6996720B1 (en) | 1999-12-17 | 2006-02-07 | Microsoft Corporation | System and method for accessing protected content in a rights-management architecture |
US7822805B1 (en) * | 1999-12-21 | 2010-10-26 | General Electric Company | Method and apparatus for screening a potential customer and assigning an account number to the potential customer across a global computer network |
US6654888B1 (en) * | 1999-12-31 | 2003-11-25 | International Business Machines Corporation | Installing and controlling trial software |
AU2000269232A1 (en) * | 2000-01-14 | 2001-07-24 | Microsoft Corporation | Specifying security for an element by assigning a scaled value representative ofthe relative security thereof |
EP1118923A1 (en) * | 2000-01-18 | 2001-07-25 | Siemens Aktiengesellschaft | Method for the use of SW products, which are provided over a network |
JP2001211157A (en) * | 2000-01-25 | 2001-08-03 | Murata Mach Ltd | Secret key registering method, secret key register secret key issuing method, cipher communication method, cipher communication system and recording medium |
JP2001211154A (en) * | 2000-01-25 | 2001-08-03 | Murata Mach Ltd | Secret key generating method, ciphering method, and cipher communication method |
FR2805377B1 (en) | 2000-02-23 | 2003-09-12 | Touchtunes Music Corp | EARLY ORDERING PROCESS FOR A SELECTION, DIGITAL SYSTEM AND JUKE-BOX FOR IMPLEMENTING THE METHOD |
FR2805060B1 (en) | 2000-02-16 | 2005-04-08 | Touchtunes Music Corp | METHOD FOR RECEIVING FILES DURING DOWNLOAD |
FR2805072B1 (en) | 2000-02-16 | 2002-04-05 | Touchtunes Music Corp | METHOD FOR ADJUSTING THE SOUND VOLUME OF A DIGITAL SOUND RECORDING |
SG97852A1 (en) * | 2000-02-25 | 2003-08-20 | Kent Ridge Digital Labs | Method and apparatus for digital content copy protection |
US7103598B1 (en) * | 2000-03-03 | 2006-09-05 | Micron Technology, Inc | Software distribution method and apparatus |
US6915337B1 (en) * | 2000-03-07 | 2005-07-05 | Ricoh Co. Ltd. | Method and system for updating the device driver of a business office appliance |
US7127526B1 (en) * | 2000-03-20 | 2006-10-24 | Nortel Networks Limited | Method and apparatus for dynamically loading and managing software services on a network device |
US7280984B2 (en) * | 2000-05-08 | 2007-10-09 | Phelan Iii Frank | Money card system, method and apparatus |
US7472092B2 (en) * | 2000-05-08 | 2008-12-30 | Patricia Phelan | Money order device with identity verification and method |
FR2808906B1 (en) | 2000-05-10 | 2005-02-11 | Touchtunes Music Corp | DEVICE AND METHOD FOR REMOTELY MANAGING A NETWORK OF AUDIOVISUAL INFORMATION REPRODUCTION SYSTEMS |
FR2811175B1 (en) | 2000-06-29 | 2002-12-27 | Touchtunes Music Corp | AUDIOVISUAL INFORMATION DISTRIBUTION METHOD AND AUDIOVISUAL INFORMATION DISTRIBUTION SYSTEM |
US7017189B1 (en) | 2000-06-27 | 2006-03-21 | Microsoft Corporation | System and method for activating a rendering device in a multi-level rights-management architecture |
US7171692B1 (en) | 2000-06-27 | 2007-01-30 | Microsoft Corporation | Asynchronous communication within a server arrangement |
US7158953B1 (en) | 2000-06-27 | 2007-01-02 | Microsoft Corporation | Method and system for limiting the use of user-specific software features |
US7539875B1 (en) | 2000-06-27 | 2009-05-26 | Microsoft Corporation | Secure repository with layers of tamper resistance and system and method for providing same |
US6891953B1 (en) | 2000-06-27 | 2005-05-10 | Microsoft Corporation | Method and system for binding enhanced software features to a persona |
US7051200B1 (en) | 2000-06-27 | 2006-05-23 | Microsoft Corporation | System and method for interfacing a software process to secure repositories |
US6981262B1 (en) * | 2000-06-27 | 2005-12-27 | Microsoft Corporation | System and method for client interaction in a multi-level rights-management architecture |
FR2811114B1 (en) | 2000-06-29 | 2002-12-27 | Touchtunes Music Corp | DEVICE AND METHOD FOR COMMUNICATION BETWEEN A SYSTEM FOR REPRODUCING AUDIOVISUAL INFORMATION AND AN ELECTRONIC ENTERTAINMENT MACHINE |
US7225159B2 (en) | 2000-06-30 | 2007-05-29 | Microsoft Corporation | Method for authenticating and securing integrated bookstore entries |
JP3602036B2 (en) * | 2000-06-30 | 2004-12-15 | シャープ株式会社 | Program supply system and program supply method |
US7693961B2 (en) * | 2000-06-30 | 2010-04-06 | Sharp Kabushiki Kaisha | Method and system for supplying programs |
US20020046045A1 (en) | 2000-06-30 | 2002-04-18 | Attila Narin | Architecture for an electronic shopping service integratable with a software application |
US7477742B2 (en) * | 2000-07-06 | 2009-01-13 | Fujitsu Limited | Method and apparatus for controlling contents utilization, and a computer product |
US20020007350A1 (en) * | 2000-07-11 | 2002-01-17 | Brian Yen | System and method for on-demand data distribution in a P2P system |
US20020143705A1 (en) * | 2000-07-28 | 2002-10-03 | Koninklijke Philips Electronics N.V. | Business model for content and software providers |
EP1179942A1 (en) * | 2000-08-08 | 2002-02-13 | Siemens Aktiengesellschaft | Method and apparatus for managing a multitude of end devices |
FR2814085B1 (en) | 2000-09-15 | 2005-02-11 | Touchtunes Music Corp | ENTERTAINMENT METHOD BASED ON MULTIPLE CHOICE COMPETITION GAMES |
US6856977B1 (en) * | 2000-09-21 | 2005-02-15 | International Business Machines Corporation | Method and system for proving ownership of digital data |
JP2002132564A (en) * | 2000-10-30 | 2002-05-10 | Nec Corp | System and method for distribution of master file |
US6889209B1 (en) * | 2000-11-03 | 2005-05-03 | Shieldip, Inc. | Method and apparatus for protecting information and privacy |
AU2002226381A1 (en) * | 2000-12-21 | 2002-07-01 | Nokia Corporation | Improvements in and relating to communication terminals |
US20070219918A1 (en) * | 2001-01-19 | 2007-09-20 | Jonathan Schull | System and method for controlling access to protected information |
US8458754B2 (en) | 2001-01-22 | 2013-06-04 | Sony Computer Entertainment Inc. | Method and system for providing instant start multimedia content |
US7174568B2 (en) * | 2001-01-31 | 2007-02-06 | Sony Computer Entertainment America Inc. | Method and system for securely distributing computer software products |
US20020101990A1 (en) * | 2001-02-01 | 2002-08-01 | Harumi Morino | Data receiving apparatus and data reproducing apparatus |
US7228342B2 (en) | 2001-02-20 | 2007-06-05 | Sony Computer Entertainment America Inc. | System for utilizing an incentive point system based on disc and user identification |
US20020116283A1 (en) | 2001-02-20 | 2002-08-22 | Masayuki Chatani | System and method for transfer of disc ownership based on disc and user identification |
US20020138554A1 (en) * | 2001-03-26 | 2002-09-26 | Motorola, Inc. | Method for remotely verifying software integrity |
US7174368B2 (en) * | 2001-03-27 | 2007-02-06 | Xante Corporation | Encrypted e-mail reader and responder system, method, and computer program product |
US7188342B2 (en) | 2001-04-20 | 2007-03-06 | Microsoft Corporation | Server controlled branding of client software deployed over computer networks |
DE10127865C2 (en) * | 2001-06-06 | 2003-10-23 | Siemens Ag | Method and arrangement for controlling access to data in mobile communication networks |
US7143409B2 (en) * | 2001-06-29 | 2006-11-28 | International Business Machines Corporation | Automated entitlement verification for delivery of licensed software |
US8504479B2 (en) * | 2001-08-29 | 2013-08-06 | Conexant Systems, Inc. | Key interface for secure object manipulation |
JP4440503B2 (en) * | 2001-09-20 | 2010-03-24 | 富士通株式会社 | Information list creation device and program thereof |
US7178033B1 (en) | 2001-12-12 | 2007-02-13 | Pss Systems, Inc. | Method and apparatus for securing digital assets |
US7921284B1 (en) | 2001-12-12 | 2011-04-05 | Gary Mark Kinghorn | Method and system for protecting electronic data in enterprise environment |
US7260555B2 (en) | 2001-12-12 | 2007-08-21 | Guardian Data Storage, Llc | Method and architecture for providing pervasive security to digital assets |
US7921450B1 (en) | 2001-12-12 | 2011-04-05 | Klimenty Vainstein | Security system using indirect key generation from access rules and methods therefor |
US8006280B1 (en) | 2001-12-12 | 2011-08-23 | Hildebrand Hal S | Security system for generating keys from access rules in a decentralized manner and methods therefor |
US7930756B1 (en) | 2001-12-12 | 2011-04-19 | Crocker Steven Toye | Multi-level cryptographic transformations for securing digital assets |
US7565683B1 (en) | 2001-12-12 | 2009-07-21 | Weiqing Huang | Method and system for implementing changes to security policies in a distributed security system |
US10360545B2 (en) | 2001-12-12 | 2019-07-23 | Guardian Data Storage, Llc | Method and apparatus for accessing secured electronic data off-line |
USRE41546E1 (en) | 2001-12-12 | 2010-08-17 | Klimenty Vainstein | Method and system for managing security tiers |
US7681034B1 (en) | 2001-12-12 | 2010-03-16 | Chang-Ping Lee | Method and apparatus for securing electronic data |
US7921288B1 (en) | 2001-12-12 | 2011-04-05 | Hildebrand Hal S | System and method for providing different levels of key security for controlling access to secured items |
US7380120B1 (en) | 2001-12-12 | 2008-05-27 | Guardian Data Storage, Llc | Secured data format for access control |
US8065713B1 (en) | 2001-12-12 | 2011-11-22 | Klimenty Vainstein | System and method for providing multi-location access management to secured items |
US10033700B2 (en) | 2001-12-12 | 2018-07-24 | Intellectual Ventures I Llc | Dynamic evaluation of access rights |
US7661134B2 (en) * | 2001-12-21 | 2010-02-09 | Cybersoft, Inc. | Apparatus, methods and articles of manufacture for securing computer networks |
US7950066B1 (en) | 2001-12-21 | 2011-05-24 | Guardian Data Storage, Llc | Method and system for restricting use of a clipboard application |
EP1369778A3 (en) * | 2002-01-09 | 2004-01-02 | Matsushita Electric Industrial Co., Ltd. | Program distribution system |
US20030135754A1 (en) * | 2002-01-11 | 2003-07-17 | Chaucer Chiu | Database expanding system and method |
US8176334B2 (en) | 2002-09-30 | 2012-05-08 | Guardian Data Storage, Llc | Document security system that permits external users to gain access to secured files |
JP3785640B2 (en) * | 2002-02-25 | 2006-06-14 | ソニー株式会社 | Service providing apparatus and service providing method |
US7296237B2 (en) * | 2002-03-15 | 2007-11-13 | Shinkuro, Inc. | Data replication system and method |
US7748045B2 (en) | 2004-03-30 | 2010-06-29 | Michael Frederick Kenrich | Method and system for providing cryptographic document retention with off-line access |
AU2003243187A1 (en) * | 2002-05-02 | 2003-11-17 | Shieldip, Inc. | Method and apparatus for protecting information and privacy |
US7352867B2 (en) * | 2002-07-10 | 2008-04-01 | General Instrument Corporation | Method of preventing unauthorized distribution and use of electronic keys using a key seed |
US7512810B1 (en) | 2002-09-11 | 2009-03-31 | Guardian Data Storage Llc | Method and system for protecting encrypted files transmitted over a network |
US9646339B2 (en) | 2002-09-16 | 2017-05-09 | Touchtunes Music Corporation | Digital downloading jukebox system with central and local music servers |
US8332895B2 (en) | 2002-09-16 | 2012-12-11 | Touchtunes Music Corporation | Digital downloading jukebox system with user-tailored music management, communications, and other tools |
US11029823B2 (en) | 2002-09-16 | 2021-06-08 | Touchtunes Music Corporation | Jukebox with customizable avatar |
US7822687B2 (en) | 2002-09-16 | 2010-10-26 | Francois Brillon | Jukebox with customizable avatar |
US10373420B2 (en) | 2002-09-16 | 2019-08-06 | Touchtunes Music Corporation | Digital downloading jukebox with enhanced communication features |
US8584175B2 (en) | 2002-09-16 | 2013-11-12 | Touchtunes Music Corporation | Digital downloading jukebox system with user-tailored music management, communications, and other tools |
US8151304B2 (en) | 2002-09-16 | 2012-04-03 | Touchtunes Music Corporation | Digital downloading jukebox system with user-tailored music management, communications, and other tools |
US8103589B2 (en) | 2002-09-16 | 2012-01-24 | Touchtunes Music Corporation | Digital downloading jukebox system with central and local music servers |
US12100258B2 (en) | 2002-09-16 | 2024-09-24 | Touchtunes Music Company, Llc | Digital downloading jukebox with enhanced communication features |
US7836310B1 (en) | 2002-11-01 | 2010-11-16 | Yevgeniy Gutnik | Security system that uses indirect password-based encryption |
US7890990B1 (en) | 2002-12-20 | 2011-02-15 | Klimenty Vainstein | Security system with staging capabilities |
US7181499B1 (en) * | 2002-12-23 | 2007-02-20 | Ciena Corporation | Method, system and storage medium for simultaneous software image distribution to multiple optical network elements |
JP2004227080A (en) * | 2003-01-20 | 2004-08-12 | Nec Corp | Information processing system, mobile terminal, and information processing server |
US7788177B2 (en) * | 2003-02-19 | 2010-08-31 | Bible Jr Robert | Encrypted e-commerce product |
US7370212B2 (en) | 2003-02-25 | 2008-05-06 | Microsoft Corporation | Issuing a publisher use license off-line in a digital rights management (DRM) system |
US6986041B2 (en) * | 2003-03-06 | 2006-01-10 | International Business Machines Corporation | System and method for remote code integrity in distributed systems |
US8707034B1 (en) * | 2003-05-30 | 2014-04-22 | Intellectual Ventures I Llc | Method and system for using remote headers to secure electronic files |
US7730543B1 (en) | 2003-06-30 | 2010-06-01 | Satyajit Nath | Method and system for enabling users of a group shared across multiple file security systems to access secured files |
US8127366B2 (en) | 2003-09-30 | 2012-02-28 | Guardian Data Storage, Llc | Method and apparatus for transitioning between states of security policies used to secure electronic documents |
US7703140B2 (en) | 2003-09-30 | 2010-04-20 | Guardian Data Storage, Llc | Method and system for securing digital assets using process-driven security policies |
US20050102669A1 (en) * | 2003-10-15 | 2005-05-12 | Siemens Medical Solutions Usa, Inc. | Software installation file verification media and methods for medical equipment |
US20050234827A1 (en) * | 2004-04-14 | 2005-10-20 | Rudowsky Michael J | System for processing executable applications to be suitable for distribution |
US7707427B1 (en) | 2004-07-19 | 2010-04-27 | Michael Frederick Kenrich | Multi-level file digests |
US7966662B2 (en) * | 2004-09-02 | 2011-06-21 | Qualcomm Incorporated | Method and system for managing authentication and payment for use of broadcast material |
US9489496B2 (en) * | 2004-11-12 | 2016-11-08 | Apple Inc. | Secure software updates |
US7853657B2 (en) * | 2004-12-08 | 2010-12-14 | John Martin | Electronic message response and remediation system and method |
US20110197114A1 (en) * | 2004-12-08 | 2011-08-11 | John Martin | Electronic message response and remediation system and method |
US7899189B2 (en) * | 2004-12-09 | 2011-03-01 | International Business Machines Corporation | Apparatus, system, and method for transparent end-to-end security of storage data in a client-server environment |
US7890428B2 (en) * | 2005-02-04 | 2011-02-15 | Microsoft Corporation | Flexible licensing architecture for licensing digital application |
US8725646B2 (en) | 2005-04-15 | 2014-05-13 | Microsoft Corporation | Output protection levels |
US8091142B2 (en) * | 2005-04-26 | 2012-01-03 | Microsoft Corporation | Supplementary trust model for software licensing/commercial digital distribution policy |
US8385525B2 (en) * | 2005-05-16 | 2013-02-26 | Noah John Szczepanek | Internet accessed text-to-speech reading assistant |
US20060265758A1 (en) | 2005-05-20 | 2006-11-23 | Microsoft Corporation | Extensible media rights |
JP4577118B2 (en) * | 2005-06-24 | 2010-11-10 | ブラザー工業株式会社 | Service providing system, client, server and program |
US20070017946A1 (en) * | 2005-07-19 | 2007-01-25 | Orr Robertson J | Golf bag fastener |
JP4529848B2 (en) * | 2005-09-09 | 2010-08-25 | コニカミノルタビジネステクノロジーズ株式会社 | File management apparatus and file management method |
GB0600567D0 (en) * | 2006-01-12 | 2006-02-22 | Mackay Neil L | Releasable cover for climbing hanger device |
JP5013728B2 (en) * | 2006-03-20 | 2012-08-29 | キヤノン株式会社 | System and processing method thereof, and communication apparatus and processing method |
US8051488B2 (en) * | 2006-10-05 | 2011-11-01 | Microsoft Corporation | Trial usage for encrypted subscription-based data |
US8239274B2 (en) * | 2007-01-11 | 2012-08-07 | Microsoft Corporation | Purchasing of individual features of a software product |
US9330529B2 (en) | 2007-01-17 | 2016-05-03 | Touchtunes Music Corporation | Game terminal configured for interaction with jukebox device systems including same, and/or associated methods |
US9171419B2 (en) | 2007-01-17 | 2015-10-27 | Touchtunes Music Corporation | Coin operated entertainment system |
JP4789819B2 (en) * | 2007-01-31 | 2011-10-12 | 株式会社日立製作所 | Application and data management method, management system, thin client terminal used therefor, management server, and remote computer |
US9953481B2 (en) | 2007-03-26 | 2018-04-24 | Touchtunes Music Corporation | Jukebox with associated video server |
US7908473B2 (en) * | 2007-05-18 | 2011-03-15 | Exar Corporation | System for storing encrypted data by sub-address |
US8996409B2 (en) | 2007-06-06 | 2015-03-31 | Sony Computer Entertainment Inc. | Management of online trading services using mediated communications |
DE602007012538D1 (en) * | 2007-07-27 | 2011-03-31 | Ntt Docomo Inc | Method and apparatus for performing delegated transactions |
US20090037287A1 (en) * | 2007-07-31 | 2009-02-05 | Ahmad Baitalmal | Software Marketplace and Distribution System |
EP2188740A2 (en) * | 2007-07-31 | 2010-05-26 | Etelos, Inc. | Software marketplace and distribution system |
US20090037337A1 (en) * | 2007-07-31 | 2009-02-05 | Ahmad Baitalmal | Software Licensing and Enforcement System |
US9483405B2 (en) * | 2007-09-20 | 2016-11-01 | Sony Interactive Entertainment Inc. | Simplified run-time program translation for emulating complex processor pipelines |
US8200985B2 (en) * | 2007-09-20 | 2012-06-12 | Broadcom Corporation | Method and system for protecting data |
US10290006B2 (en) | 2008-08-15 | 2019-05-14 | Touchtunes Music Corporation | Digital signage and gaming services to comply with federal and state alcohol and beverage laws and regulations |
US8332887B2 (en) | 2008-01-10 | 2012-12-11 | Touchtunes Music Corporation | System and/or methods for distributing advertisements from a central advertisement network to a peripheral device via a local advertisement server |
US8607226B2 (en) * | 2008-01-22 | 2013-12-10 | International Business Machines Corporation | Solution for locally staged electronic software distribution using secure removable media |
US8935796B2 (en) * | 2008-03-14 | 2015-01-13 | Microsoft Corporation | Segment based digital content protection |
US8725647B2 (en) * | 2008-03-27 | 2014-05-13 | Ca, Inc. | Method and system for determining software license compliance |
US20090249493A1 (en) * | 2008-03-27 | 2009-10-01 | Computer Associates Think, Inc. | Method and System for Determining Software License Compliance |
WO2010005569A1 (en) | 2008-07-09 | 2010-01-14 | Touchtunes Music Corporation | Digital downloading jukebox with revenue-enhancing features |
US8447421B2 (en) * | 2008-08-19 | 2013-05-21 | Sony Computer Entertainment Inc. | Traffic-based media selection |
US8290604B2 (en) * | 2008-08-19 | 2012-10-16 | Sony Computer Entertainment America Llc | Audience-condition based media selection |
US20100161996A1 (en) * | 2008-12-23 | 2010-06-24 | Whiting Douglas L | System and Method for Developing Computer Chips Containing Sensitive Information |
US9946848B2 (en) | 2009-02-26 | 2018-04-17 | International Business Machines Corporation | Software protection using an installation product having an entitlement file |
US12112093B2 (en) | 2009-03-18 | 2024-10-08 | Touchtunes Music Company, Llc | Entertainment server and associated social networking services |
EP2409273A4 (en) | 2009-03-18 | 2016-05-11 | Touchtunes Music Corp | Entertainment server and associated social networking services |
US9292166B2 (en) | 2009-03-18 | 2016-03-22 | Touchtunes Music Corporation | Digital jukebox device with improved karaoke-related user interfaces, and associated methods |
US10564804B2 (en) | 2009-03-18 | 2020-02-18 | Touchtunes Music Corporation | Digital jukebox device with improved user interfaces, and associated methods |
US10719149B2 (en) | 2009-03-18 | 2020-07-21 | Touchtunes Music Corporation | Digital jukebox device with improved user interfaces, and associated methods |
US20100293072A1 (en) * | 2009-05-13 | 2010-11-18 | David Murrant | Preserving the Integrity of Segments of Audio Streams |
US10325266B2 (en) | 2009-05-28 | 2019-06-18 | Sony Interactive Entertainment America Llc | Rewarding classes of purchasers |
GB0910327D0 (en) * | 2009-06-16 | 2009-07-29 | Antix Labs Ltd | Rights managed distributable software |
US9633183B2 (en) | 2009-06-19 | 2017-04-25 | Uniloc Luxembourg S.A. | Modular software protection |
EP2449496A1 (en) * | 2009-07-03 | 2012-05-09 | Thomson Licensing | Method for acquisition of software applications |
US20110016182A1 (en) * | 2009-07-20 | 2011-01-20 | Adam Harris | Managing Gifts of Digital Media |
US8463934B2 (en) | 2009-11-05 | 2013-06-11 | Rj Intellectual Properties, Llc | Unified system area network and switch |
US8359401B2 (en) * | 2009-11-05 | 2013-01-22 | RJ Intellectual Properties, Inc. | Network switch |
DE102009052454A1 (en) | 2009-11-09 | 2011-05-12 | Siemens Aktiengesellschaft | Method and system for confidential provision of software components |
US8966657B2 (en) * | 2009-12-31 | 2015-02-24 | Intel Corporation | Provisioning, upgrading, and/or changing of hardware |
CN105336349A (en) | 2010-01-26 | 2016-02-17 | 踏途音乐公司 | Digital jukebox device with improved user interfaces, and associated methods |
US8433759B2 (en) | 2010-05-24 | 2013-04-30 | Sony Computer Entertainment America Llc | Direction-conscious information sharing |
US8484219B2 (en) | 2010-09-21 | 2013-07-09 | Sony Computer Entertainment America Llc | Developing a knowledge base associated with a user that facilitates evolution of an intelligent user interface |
US8504487B2 (en) | 2010-09-21 | 2013-08-06 | Sony Computer Entertainment America Llc | Evolution of a user interface based on learned idiosyncrasies and collected data of a user |
CA3179622A1 (en) * | 2010-10-08 | 2012-04-12 | Brian Lee Moffat | Private data sharing system |
US9449324B2 (en) * | 2010-11-11 | 2016-09-20 | Sony Corporation | Reducing TV licensing costs |
GB2522772B (en) | 2011-09-18 | 2016-01-13 | Touchtunes Music Corp | Digital jukebox device with karaoke and/or photo booth features, and associated methods |
US11151224B2 (en) | 2012-01-09 | 2021-10-19 | Touchtunes Music Corporation | Systems and/or methods for monitoring audio inputs to jukebox devices |
US9100421B2 (en) | 2012-11-12 | 2015-08-04 | International Business Machines Corporation | Enterprise application session control and monitoring in a large distributed environment |
US8990893B2 (en) * | 2012-11-12 | 2015-03-24 | International Business Machines Corporation | Enterprise application session control and monitoring in a large distributed environment |
US9105178B2 (en) | 2012-12-03 | 2015-08-11 | Sony Computer Entertainment Inc. | Remote dynamic configuration of telemetry reporting through regular expressions |
JP6175971B2 (en) * | 2013-08-16 | 2017-08-09 | 富士通株式会社 | Information processing apparatus, information processing method, and information processing program |
WO2015070070A1 (en) | 2013-11-07 | 2015-05-14 | Touchtunes Music Corporation | Techniques for generating electronic menu graphical user interface layouts for use in connection with electronic devices |
TWI722981B (en) | 2014-03-25 | 2021-04-01 | 美商觸控調諧音樂公司 | Digital jukebox device with improved user interfaces, and associated methods |
JP2016071422A (en) * | 2014-09-26 | 2016-05-09 | ブラザー工業株式会社 | Software providing system and installation program |
EP3258406A4 (en) * | 2015-06-04 | 2018-03-07 | Huawei Technologies Co., Ltd. | Software security protection method and device |
US10694352B2 (en) | 2015-10-28 | 2020-06-23 | Activision Publishing, Inc. | System and method of using physical objects to control software access |
US10861079B2 (en) | 2017-02-23 | 2020-12-08 | Activision Publishing, Inc. | Flexible online pre-ordering system for media |
GB201711878D0 (en) * | 2017-07-24 | 2017-09-06 | Nchain Holdings Ltd | Computer - implemented system and method |
US11901970B1 (en) * | 2022-11-07 | 2024-02-13 | Capital One Services, Llc | Near-field communication functionality for partial applications accessed over a network |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4200770A (en) | 1977-09-06 | 1980-04-29 | Stanford University | Cryptographic apparatus and method |
US4405829A (en) | 1977-12-14 | 1983-09-20 | Massachusetts Institute Of Technology | Cryptographic communications system and method |
US4817140A (en) * | 1986-11-05 | 1989-03-28 | International Business Machines Corp. | Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor |
USRE36310E (en) * | 1990-06-07 | 1999-09-21 | Kommunedata I/S | Method of transferring data, between computer systems using electronic cards |
US5222134A (en) * | 1990-11-07 | 1993-06-22 | Tau Systems Corporation | Secure system for activating personal computer software at remote locations |
AU5990694A (en) * | 1993-01-07 | 1994-08-15 | Infonow Corporation | Software evaulation and distribution apparatus, system, and method |
US5812666A (en) * | 1995-03-31 | 1998-09-22 | Pitney Bowes Inc. | Cryptographic key management and validation system |
US5809145A (en) * | 1996-06-28 | 1998-09-15 | Paradata Systems Inc. | System for distributing digital information |
US5862223A (en) * | 1996-07-24 | 1999-01-19 | Walker Asset Management Limited Partnership | Method and apparatus for a cryptographically-assisted commercial network system designed to facilitate and support expert-based commerce |
-
1996
- 1996-03-11 JP JP05340796A patent/JP3486043B2/en not_active Expired - Fee Related
-
1997
- 1997-03-10 US US08/814,538 patent/US6195432B1/en not_active Expired - Lifetime
- 1997-03-11 EP EP97104050A patent/EP0795809A3/en not_active Withdrawn
-
2000
- 2000-12-18 US US09/738,857 patent/US6332025B2/en not_active Expired - Fee Related
Cited By (59)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7072062B2 (en) * | 2000-07-25 | 2006-07-04 | Murata Kikai Kabushiki Kaisha | Server device and communication method |
US20020054365A1 (en) * | 2000-07-25 | 2002-05-09 | Murata Kikai Kabushiki Kaisha | Server device and communication method |
US20020091547A1 (en) * | 2000-10-31 | 2002-07-11 | Yasuhiro Ohe | Medical software providing method, method for transacting option part for medical image diagnostic device, medical software providing system, and system for transacting option part for medical image diagnostic device |
US20080288770A1 (en) * | 2001-05-23 | 2008-11-20 | Kline Paul A | System and method for a commercial multimedia rental and distribution system |
US8131993B2 (en) * | 2001-05-23 | 2012-03-06 | Sharestream, Llc | System and method for a commercial multimedia rental and distribution system |
US8627415B2 (en) | 2001-05-23 | 2014-01-07 | Sharestream, Llc | System and method for secure commercial multimedia rental and distribution over secure connections |
US20030016829A1 (en) * | 2001-06-15 | 2003-01-23 | Samsung Electronics Co. Ltd. | System and method for protecting content data |
US20040199600A1 (en) * | 2001-10-16 | 2004-10-07 | Dorundo Alan D. | Method and apparatus for program installation in a modular network |
US8533076B2 (en) * | 2002-12-12 | 2013-09-10 | Microsoft Corporation | Online game commerce system |
US20130095910A1 (en) * | 2002-12-12 | 2013-04-18 | Massive Incorporated | Online game commerce system |
US8090618B1 (en) * | 2002-12-12 | 2012-01-03 | Massive Incorporated | Online game commerce system |
US20040148221A1 (en) * | 2003-01-24 | 2004-07-29 | Viva Chu | Online game advertising system |
US7729946B2 (en) | 2003-01-24 | 2010-06-01 | Massive Incorporated | Online game advertising system |
US9892395B2 (en) | 2003-03-13 | 2018-02-13 | Intel Corporation | System and method for the distribution of software products |
US9892391B2 (en) | 2003-03-13 | 2018-02-13 | Intel Corporation | System and method for the distribution of software products |
US9892394B2 (en) | 2003-03-13 | 2018-02-13 | Intel Corporation | System and method for the distribution of software products |
US9892393B2 (en) * | 2003-03-13 | 2018-02-13 | Intel Corporation | System and method for the distribution of software products |
US9892392B2 (en) | 2003-03-13 | 2018-02-13 | Intel Corporation | System and method for the distribution of software products |
US20150332307A1 (en) * | 2003-03-13 | 2015-11-19 | Intel Corporation | System And Method For The Distribution Of Software Products |
US20060236091A1 (en) * | 2005-03-28 | 2006-10-19 | Tadashi Kaji | Encryption method for SIP message and encrypted SIP communication system |
US7720227B2 (en) * | 2005-03-28 | 2010-05-18 | Hitachi, Ltd. | Encryption method for SIP message and encrypted SIP communication system |
US20080217407A1 (en) * | 2005-05-17 | 2008-09-11 | Friedrich Karl Ackermann | Host Apparatus and Method Providing Calibration and Reagent Information to a Measurement Apparatus with Makes Use of a Consumable Reagent in a Measuring Process |
US7883015B2 (en) | 2005-05-17 | 2011-02-08 | Roche Diagnostics Operations, Inc. | Host apparatus and method providing calibration and reagent information to a measurement apparatus which makes use of a consumable reagent in a measuring process |
USRE44345E1 (en) | 2005-05-17 | 2013-07-09 | Roche Diagnostics Operations, Inc. | Host apparatus and method providing calibration and reagent information to a measurement apparatus which makes use of a consumable reagent in a measuring process |
US8001322B2 (en) * | 2005-12-30 | 2011-08-16 | Vmware, Inc. | Notifying software components using a shared physical storage medium |
US20110258626A1 (en) * | 2005-12-30 | 2011-10-20 | Vmware, Inc. | Notifying software components using a shared physical storage medium |
US20100180079A1 (en) * | 2005-12-30 | 2010-07-15 | Vmware, Inc. | Notifying software components using a shared physical storage medium |
US8555003B2 (en) * | 2005-12-30 | 2013-10-08 | Vmware, Inc. | Notifying software components using a shared physical storage medium |
US8484343B2 (en) * | 2006-10-18 | 2013-07-09 | Google Inc. | Online ranking metric |
US8468197B2 (en) | 2006-10-18 | 2013-06-18 | Google Inc. | Generic online ranking system and method suitable for syndication |
US20120254198A1 (en) * | 2006-10-18 | 2012-10-04 | Google Inc. | Online Ranking Metric |
US20080301446A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Authorizing customer premise equipment into a network |
US8700076B1 (en) | 2007-06-04 | 2014-04-15 | Qualcomm Atheros, Inc. | Clock synchronization among network stations |
US8170051B2 (en) | 2007-06-04 | 2012-05-01 | Qualcomm Atheros, Inc. | In-home coexistence network |
US8467369B2 (en) | 2007-06-04 | 2013-06-18 | Qualcomm Atheros, Inc. | Distributed scheduling |
US20080298590A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Network encryption key rotation |
US8112358B2 (en) | 2007-06-04 | 2012-02-07 | Qualcomm Atheros, Inc. | Authorizing customer premise equipment on a sub-network |
US8488615B2 (en) | 2007-06-04 | 2013-07-16 | Qualcomm Incorporated | Contention groups for hidden nodes |
US8503480B2 (en) | 2007-06-04 | 2013-08-06 | Qualcomm Atheros, Inc. | Managing communications over a shared medium |
US8510470B2 (en) | 2007-06-04 | 2013-08-13 | Qualcomm Atheros, Inc. | Path selection for routing traffic in a network |
US20080301052A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Authorizing customer premise equipment on a sub-network |
US20080298252A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Method of routing traffic in a network |
US20080298594A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Authorizing stations into a centrally managed network |
US20090116461A1 (en) * | 2007-06-04 | 2009-05-07 | Intellon Corporation | Distributed Scheduling |
US8429406B2 (en) * | 2007-06-04 | 2013-04-23 | Qualcomm Atheros, Inc. | Authorizing customer premise equipment into a network |
US20080298589A1 (en) * | 2007-06-04 | 2008-12-04 | Intellon Corporation | Establishing a unique end-to-end management key |
US8930572B2 (en) | 2007-06-04 | 2015-01-06 | Qualcomm Incorporated | Path selection for routing traffic in a network |
US8989379B2 (en) | 2007-06-04 | 2015-03-24 | Qualcomm Incorporated | Network encryption key rotation |
US9130888B2 (en) | 2007-06-04 | 2015-09-08 | Qualcomm Incorporated | Authorizing equipment on a sub-network |
US9148385B2 (en) | 2007-06-04 | 2015-09-29 | Qualcomm Incorporated | Contention groups for hidden nodes |
US9521090B2 (en) | 2007-06-04 | 2016-12-13 | Qualcomm Incorporated | Authorizing stations into a centrally managed network |
US9385966B2 (en) | 2007-06-04 | 2016-07-05 | Qualcomm Incorporated | Managing communications over a shared medium |
US9413686B2 (en) | 2007-06-04 | 2016-08-09 | Qualcomm Incorporated | Establishing a unique end-to-end management key |
US20090036095A1 (en) * | 2007-07-30 | 2009-02-05 | Lsi Corporation | Information security and delivery method and apparatus |
US8135383B2 (en) * | 2007-07-30 | 2012-03-13 | Lsi Corporation | Information security and delivery method and apparatus |
SG160256A1 (en) * | 2008-09-29 | 2010-04-29 | Ngee Ann Polytechnic | Software activation and copy protection method |
US8763142B2 (en) | 2009-04-07 | 2014-06-24 | Princeton Payment Solutions | Tokenized payment processing schemes |
US8584251B2 (en) | 2009-04-07 | 2013-11-12 | Princeton Payment Solutions | Token-based payment processing system |
US20100257612A1 (en) * | 2009-04-07 | 2010-10-07 | Mcguire Kevin M | Token-based payment processing system |
Also Published As
Publication number | Publication date |
---|---|
US6195432B1 (en) | 2001-02-27 |
JP3486043B2 (en) | 2004-01-13 |
US6332025B2 (en) | 2001-12-18 |
JPH09244886A (en) | 1997-09-19 |
EP0795809A3 (en) | 2003-08-13 |
EP0795809A2 (en) | 1997-09-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US6332025B2 (en) | Software distribution system and software utilization scheme for improving security and user convenience | |
US7343495B2 (en) | Information recording apparatus, information reproducing apparatus, and information distribution system | |
CA2184786C (en) | Accounting apparatus, information receiving apparatus, and communication system | |
US7039615B1 (en) | Retail transactions involving digital content in a digital rights management (DRM) system | |
US7149722B1 (en) | Retail transactions involving distributed and super-distributed digital content in a digital rights management (DRM) system | |
JP3503774B2 (en) | Method and apparatus for securing access to a file | |
US6636966B1 (en) | Digital rights management within an embedded storage device | |
EP0679977B1 (en) | Method and apparatus enabling software trial allowing the distribution of software objects | |
US5689560A (en) | Method and apparatus for enabling trial period use of software products: method and apparatus for allowing a try-and-buy user interaction | |
US6009401A (en) | Relicensing of electronically purchased software | |
US5757908A (en) | Method and apparatus for enabling trial period use of software products: method and apparatus for utilizing an encryption header | |
US5757907A (en) | Method and apparatus for enabling trial period use of software products: method and apparatus for generating a machine-dependent identification | |
US20020161709A1 (en) | Server-side commerce for deliver-then-pay content delivery | |
EP2110772A2 (en) | Method and apparatus for protecting information and privacy | |
US20040054584A1 (en) | Electronic content transacting method and system therefor | |
JP4353552B2 (en) | Content server, terminal device, and content transmission system | |
JP2001005877A (en) | Contents distribution system, terminal equipment therefor, contents distributing method and recording medium | |
EP1249771B1 (en) | Large capacity data sales/mediation/purchase method, system, server, terminal and recording medium recording program thereof | |
JPH09114904A (en) | Method and system for vending information | |
JP3899890B2 (en) | Billing method and system, purchase control terminal, authentication billing server, sales server, billing program, and storage medium storing billing program | |
JP2004309737A (en) | Decoding key protection program and decoding key protection method | |
JPH08335170A (en) | Program usage tariff charging system | |
JP2002352146A (en) | Method, system and program for charging contents parts and storage medium with contents parts charging program stored therein | |
JP2002015146A (en) | System and method for selling software | |
JP2002344439A (en) | System for detecting illegal tampering of utilization history in digital contents distribution |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FEPP | Fee payment procedure |
Free format text: PAYOR NUMBER ASSIGNED (ORIGINAL EVENT CODE: ASPN); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY |
|
FPAY | Fee payment |
Year of fee payment: 4 |
|
FPAY | Fee payment |
Year of fee payment: 8 |
|
REMI | Maintenance fee reminder mailed | ||
LAPS | Lapse for failure to pay maintenance fees | ||
STCH | Information on status: patent discontinuation |
Free format text: PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362 |
|
FP | Lapsed due to failure to pay maintenance fee |
Effective date: 20131218 |