Computer system security method and apparatus having program authorization information data structures
INFORMATION PROTECTION AND AUTHENTICATION OF TEXAS, LLCThe holder of the '717 patent has sued Microsoft, Symantec, CA, F-Secure, McAfee, Kaspersky, Sophos, Novell, and PC Tools for infringing this patent.
Last updated: about 1 year ago
Summary / Description
| Summary / Description | This invention contemplates a digitally encoded program or process which is electronically stored or storable in a memory associated with a computer or process controller such as might control a proprietary industrial process. |
Basic Information
| Type of Prior Art | Issued Patents - US |
| Country | United States of America |
| Patent/Application # | 4471163 |
| Kind Code | United States (US) - United STATES Patent - A |
| Patentee Name | Thomas C. Donald, Henry W. Donald |
| Relevant Pages, Columns, or Lines | col. 1, ln 63 - col. 2, ln 35 |
| URL | http://patft.uspto.gov/netacgi/... |
| Publication Date | October 5, 1981 |
| Additional Information | The publication date is actually the filing date. |
Notes / To Do
| Notes | |
Excerpt
This invention contemplates a digitally encoded program or process which is electronically stored or storable in a memory associated with a computer or process controller such as might control a proprietary industrial process. As a matter of convenience of description, the present system will be described in terms of the control of a computer, but it is to be appreciated that both type devices are intended by such reference.
The signal makeup of the program or process stored, or to be stored, is modified by the inclusion in it of procedures V to generate certain signals V', which, by themselve, inherently interfere with the normal performance, "running", of the program (or process) by the computer (or process controller) and call for an external authorization to eliminate the interference.
Separate from the computer, a "lock mechanism, equipped with a unique identifying number C, (which defines signals C') is employed, and it is uniquely equipped to facilitate the requests for and the provision of "run" authorizations. Further, a set of "key" signals K', representing a number K derived at least in part from bases common to signals V' and C', are supplied to a memory accessible to the lock. As a first function, the lock obtains the key signals K' and makes a comparison of them in terms of the lock identity number C, and if signals K' bear a selected correlation to signals C', at least a portion of the information in signals K' are caused to be stored in a memory in the lock. These stored signals are thus made available as, in effect, signals for the processing of subsequent "run" authorization requests from the computer, which are in the form of signals V' as described above.
When a "run" authorization request is generated, the lock causes a correlation process to occur involving elements of signals V' and K', and when the selected correlation is present, the "running" of the stored program or process involved is enabled. In the absence of the selected correlation between signals, V' and K', the stored program or process will not be authorized to "run".
Relevance
Claims
Claim 120
In a digital computer system having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, a method for providing improved computer security comprising the steps of:
a) storing digital authorization information in said memory means which restricts an associated program from accessing resources when executed by said digital data processing means which are accessible to said computer user; and
b) storing in at least one segment, digital data for associating said authorization information with at least one program to be executed by said processing means for said computer user.
Relevance
In a digital computer system having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, a method for providing improved computer security comprising the steps of: a) storing digital authorization information in said memory means which restricts an associated program from accessing resources when executed by said digital data processing means which are accessible to said computer user; and b) storing in at least one segment, digital data for associating said authorization information with at least one program to be executed by said processing means for said computer user.
In a digital computer system having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, a method for providing improved computer security comprising the steps of: a) storing digital authorization information in said memory means which restricts an associated program from accessing resources when executed by said digital data processing means which are accessible to said computer user; and b) storing in at least one segment, digital data for associating said authorization information with at least one program to be executed by said processing means for said computer user.
Claim Chart
All
Claim 61
In a digital computer system for providing improved computer security having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising:
a) means for storing digital authorization information in said memory means which restricts an associated program from performing operations, when executed by said processing means, which are available to said computer user; and
b) means for storing in at least one segment digital data for associating said authorization information with at least one program to be executed by said processing means.
Relevance
In a digital computer system for providing improved computer security having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising: a) means for storing digital authorization information in said memory means which restricts an associated program from performing operations, when executed by said processing means, which are available to said computer user; and b) means for storing in at least one segment digital data for associating said authorization information with at least one program to be executed by said processing means.
In a digital computer system for providing improved computer security having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising: a) means for storing digital authorization information in said memory means which restricts an associated program from performing operations, when executed by said processing means, which are available to said computer user; and b) means for storing in at least one segment digital data for associating said authorization information with at least one program to be executed by said processing means.
Claim Chart
All
Claim 1
In a digital computer system having a digital data processing means for executing a plurality of digital programs and a memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising:
a) means for storing a plurality of digital authorization entries in said memory means, wherein said entries qualify operations which an associated program is permitted to perform when executed by said processing means; and
b) means for storing in at least one segment, digital data for associating said authorization entries with at least one program.
Relevance
In a digital computer system having a digital data processing means for executing a plurality of digital programs and a memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising: a) means for storing a plurality of digital authorization entries in said memory means, wherein said entries qualify operations which an associated program is permitted to perform when executed by said processing means; and b) means for storing in at least one segment, digital data for associating said authorization entries with at least one program.
In a digital computer system having a digital data processing means for executing a plurality of digital programs and a memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising: a) means for storing a plurality of digital authorization entries in said memory means, wherein said entries qualify operations which an associated program is permitted to perform when executed by said processing means; and b) means for storing in at least one segment, digital data for associating said authorization entries with at least one program.
Claim Chart
All
