DE4019652A1 - Protection appts. against unauthorised use of commercial software - combines unique target machine ID with individual security code to produce unique password - Google Patents

Abstract

The target machine is required to have a unique "fingerprint" ID stored permanently in hardware (e.g. PROM) and accessible to software routines. When a licence is bought to run software on a partic. machine, this ID and the software licence number are communicated to the software vendor, who supplies a unique access code in return. The three values are combined by the software to produce a common internal password enables the software to run. ADVANTAGE - Restricts use of software to designated target machines, without restricting creation of safety backup copies of purchased software.

Description

The invention relates to a method for protecting software against inadmissible copying if the software is in an ent speaking computer is installed.

The illegal copying of software installed on a computer Software, so-called original software, is pirated called. The most varied can be pirated Summarize forms of so-called computer crime. This includes, for example, copying Originalsoft goods and resale for your own account, the use of a Original software purchased with a single license at the same time multiple systems or the unauthorized copying of software of employees and use on private facilities. Total together the manifestations of piracy are immense manageable.  

Lt. VSI estimate (Association for the Promotion of Deut software industry) the software industry emerges pirated sales damage of at least annually 500 million DM.

According to the prevailing opinion, there is an original for every computer program or a multiple license for all computers of a Be drive or network.

The previously known methods for protection against piracy are partly software-only copy protection measures, which are overridden by appropriate copy programs can.

Furthermore, combined hard goods / software copy protection measures taken. For example it is known to have a hidden one on an original floppy disk Arrange an error track that is not included in normal copying is transmitted. It becomes a so-called system dis chain formed, each turned on at the start of the program must be placed.

Another type of software protection lies in the definition and requesting a password.

Furthermore, a possibility is known in which the Soft would be a so-called hardlock, i.e. a hardware side Lock, included. This will correspond to one arranged the interface of the computer and contains one Memory or processor block. Either the memory building a corresponding combination through the software removed or it is using a special algorithm modified and entered an entered combination of numbers the software queried again. So that the original soft goods would recognize whether the computer on which they were stacked has been legitimized for their expiration.  

All of the above measures have the disadvantage that they can be bypassed. Furthermore, they are in detail not to avoid all manifestations of pirated copy suitable.

So password protection cannot prevent the same Software installed and operated on any number of computers ben provided the user knows the password. Employee of a company can therefore easily be used in the service Operate the provided software at home.

The arrangement of traces of errors on original disks has changed proven to be nonsensical, since good copy programs transmit this error trace identically.

The use of so-called hardlocks is also avoidable, by existence either through appropriate software simulated the hardlock or simply the hardlock by off read and copy is copied.

Furthermore, the known measures have the disadvantage in common sam that they are related to the software. Another soft goods require a different measure.

Taking certain boundary conditions into account So the software-producing industry needs a real software protection for your original software.

A constraint is that the legitimate user must have the opportunity at any time, any number of security make copies of his original software. Farther the use of this software must be carried out on several or network computers. Possible organizational or administrative effort must be to an acceptable level be reduced.  

The invention lies in consideration of the boundary condition based on the task of a method for protecting software against piracy, which guarantees that the software is not unauthorized on another run as the computer licensed by the software manufacturer can.

This object is achieved by the characterizing features of Pa tent Claim 1 . Advantageous embodiments of the invention are characterized in the subclaims.

It is provided in accordance with the invention, by arrangement and use of a special password procedure with one Computer identification feature generated on the hardware side (RID), as it were a fingerprint of the computer, the barrel ability of software on each individual target computer limit.

The proposed solution fulfills all of the objectives for mulated conditions. By linking a password ver driving with a newly created computer identification feature is an almost perfect protection of goods to build.

The computers / processors can be manufactured with a individual, indestructible, unchangeable identifications feature that can be read via software equips. This could be e.g. B. one more digit combination of manufacturer, computer type, series, manufacturer Act the position date and serial number. You should everyone produced computer clearly, like a fingerprint, identify.  

In conjunction with this RID, the software manufacturer can set up a computer-specific password protection. The Abar Processing a program can be done by entering a computer individual, issued and registered by the software manufacturer password must be made dependent.

In the following the invention is illustrated by examples and Implementation suggestions and the description of a possible organizational process explained.

In one embodiment, the RID and a soft commodity license no. from the software manufacturer through a registered computer password to a general software password com be implemented.

This password procedure is used with every original software delivered software registration no. (SRN) with the RID through a computer-specific password (RP) to a general len software password complemented. With the mentioned passwords It should be a multi-digit, encrypted value comm act in order to recognize structures and ge to complicate laws as far as possible.

Example:

Software register no. (SRN)
+ Computer identification feature
+ Computer-specific password (RP) → complement

= General software password

The general software password would be the key word through which access to the software is opened.  

The exemplary embodiment mentioned is a very much simplified model, that of everyone Software manufacturer can be expanded and varied as required. The general software password can, for example, to the Er to keep appearance patterns different, with variable data such as date, serial numbers and various algorithms be veiled.

It is essential with this procedure:
A unique computer identification feature that resembles a computer-specific "fingerprint" and is generated on the hardware side is combined with a computer password according to the software manufacturer's requirements. With this computer password, the operability of software can be limited to each individual computer. Software copies could only be used on the registered computer.

The software would now be able to run itself before actual user functions, the authorization of the softwa effectively control reuse through a test routine and to prevent execution if necessary.

In this embodiment, the technical and organizational handling as follows: When purchasing a software package, the buyer receives the ent speaking original disks with the specification of the software re registration no. (SRN). As a first step, the buyer installs the software with the installation disk (SETUP program). After entering all parameters, this triggers the computer identification fication feature (RID) and is there on the printer / screen out. The buyer shares the RID and the software manufacturer Software registration no. (SRN) with and receives this from assigned computer-specific password (RP). After entering the ses RP is this two configuration data or in one special password file saved. With this he receives Calculator a verifiable authorization to use that only like  which is renewed with a new installation by entering the RP should be.

The original software can be used as often as required for backup purposes can be copied, but without RP on any other computer ner used.

In the case of multiple licenses, the process described is for everyone Repeat calculator. With network licenses are the same to save all RP from all network participants.

A prerequisite for this is hardware-side computer identification cation facility (RIE). With this computer identification ons device is a hardware installation lated computer-specific feature - like a fingerprint printing - that cannot be changed, cannot be overlaid and is clear makes every computer a distinctive "individual". This identification feature must be readable via a program command and can only be output via a constant.

The computer identification feature (RID) could be a multi-digit value with the following exemplary structure.
Manufacturer Name; -code; - abbreviation
Computer type;
Serial number;
Manufacturing date;
Current number.

That the computer itself has integrated this function can of course, only realized with new production batches the. This method could only be used in seasonal periods are used. This computer identification feature should be stored in a ROM or PROM, so no more be changeable and via a program request as a constant be issued.  

Currently only one external or additional unit can be installed be seen. This procedure can already be delivered new software version can be implemented. The new Software version can have the presence of an input / output (I / O) unit RIE as hardware connector on one interface or force as an I / O unit in a free slot. This additional device would be a "pseudo input advises "to deliver the RID.

The computer identification devices (RIE) can also after changing the communication software (protocols) for ensure greater network security. Unwanted, unauthorized on intruders could thus be safely identified and rejected will.

Claims (5)

1. A method for protecting the software against impermissible copying, characterized in that the computer identification to be arranged in each target computer of the computer identification feature to limit the operability of the software on each individual target computer is queried and used. 2. The method according to claim 1, characterized, that an indestructible and unchangeable in the calculator hardware-arranged computer identification feature is being used. 3. The method according to at least one of claims 1 or 2, characterized, that the computer identification feature with a soft ware license number is added. 4. The method according to claim 3, characterized, that the computer ID added to the soft license number tification feature on the software side with a complement is added so that there is a software side fixed general password results. 5. The method according to any one of the preceding claims, characterized, that the software side before executing the actual To the user rights to use the software is checked.