Post Issue Peer-to-Patent

Computer system security method and apparatus having program authorization information data structures

INFORMATION PROTECTION AND AUTHENTICATION OF TEXAS, LLC

The holder of the '717 patent has sued Microsoft, Symantec, CA, F-Secure, McAfee, Kaspersky, Sophos, Novell, and PC Tools for infringing this patent.

#166Electronic data processing security system and method

Applies to Claims 1,120,121,2,61,62

Last updated: 3 months ago

Summary / Description

Summary / Description	Patent describing a computer security system that includes checking all executable statements for authority which is attached to a program, and includes checking the integrity of program library and OS files in order to execute the program.

Basic Information

Type of Prior Art	Issued Patents - US

Country	United States of America

Patent/Application #	3931504

Kind Code	United States (US) - United STATES Patent - A

Patentee Name	Edward A. Jacoby

Relevant Pages, Columns, or Lines	col 8, line 1 to col 9, line 2

URL	http://patft.uspto.gov/netacgi/...

Publication Date	December 12, 1973

Additional Information

Notes / To Do

Notes	The patent refers to a Basic Computing Arts product, which was released in the '70s. Further releases of the product line may have interesting additional features. Source code is included in the patent; it may be useful to comment it.

Excerpt

"operating statements 30 are transferred to comparator 408 which requests the authority table from memory 406. If there is no match, the operating statement is acceptable without authority and the secondary computer moves to the next statement. If there is a match, then the statement is either forbidden or requires authority. The secondary computer then scans for an accompanying authority card 412 which is brought to comparator 410 for comparison against authority code table 402. If a corresponding authority passcode is found, the operating statement is accepted. If not found at 415, an impulse is sent to the alarm console 46 for counteraction, as at 416 (FIG. 7). This will normally result in suppression of the statement and prevent its taking effect in the host 10. " "To perform the checksum technique, a questionable copy taken from the library device during initial program load (IPL), as will be subsequently more fully described, is resubjected to the same statistical analysis by the secondary computer as was applied to the base copy. If differences are found, an illegitimate copy is assumed and a predetermined counteraction may be initiated. "

Relevance

Claims

CLaim 2

Apparatus for protecting a digital computer user according to Claim 1, wherein said at least one segment includes means for storing a hash of said associated program.

Relevance

The patent implements all the means described in the claim. The term "checksum" is used in the Jacoby patent description to describe an equivalent entity as a "hash". The source code in the Jacoby patent uses the term "hash", however.

Claim Chart

All

Claim 120

In a digital computer system having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, a method for providing improved computer security comprising the steps of: a) storing digital authorization information in said memory means which restricts an associated program from accessing resources when executed by said digital data processing means which are accessible to said computer user; and b) storing in at least one segment, digital data for associating said authorization information with at least one program to be executed by said processing means for said computer user.

Relevance