WO2007100267A2 - Procédé, support, clé et système pour sécuriser des données et lire des données sécurisées - Google Patents
Procédé, support, clé et système pour sécuriser des données et lire des données sécurisées Download PDFInfo
- Publication number
- WO2007100267A2 WO2007100267A2 PCT/PL2007/000009 PL2007000009W WO2007100267A2 WO 2007100267 A2 WO2007100267 A2 WO 2007100267A2 PL 2007000009 W PL2007000009 W PL 2007000009W WO 2007100267 A2 WO2007100267 A2 WO 2007100267A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- data
- memory
- secured
- capacity
- information carrier
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Ceased
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
- G06F21/80—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
- G06F21/79—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in semiconductor storage media, e.g. directly-addressable memories
Definitions
- the object of the invention is: a method of securing data on an information carrier, a method of authorizing access to a secured device, a method of reading of data secured on an information carrier, an information carrier containing secured data, an information carrier authorizing access to a secured device, a technical instrument (or ,,technical means") for authorizing access to data, a technical instrument designed to secure data, a secured device designed to authorize access, an encoding and verifying key, a verifying key, a system containing secured data, a system to secure and read secured data, a system to authorize communication between devices and a system for authorization of a secured device.
- the goal of the invention is to find a way to secure data in an information carrier in such a way that a verification key contains best possible information on a carrier in which data are secured against unauthorized access.
- the purpose of the invention is also to prepare a method of reading data secured in such a manner and a method to read a carrier, to prepare a technical instrument (or ,,technical means") serving to authorize access to data, and further to prepare a verification key and a system bearing data secured in such way.
- the object of the invention is a method to secure data on an information carrier, by which a method the total memory capacity R of the information carrier is determined. Also a capacity of a memory of data to be secured on an information carrier is determined. Further, a capacity of the unoccupied memory part W of an information carrier is determined. Next an encoding and verifying key containing information about a memory of an information carrier is determined. Finally, data are saved in an information carrier.
- the sequence of individual steps as presented above can be different. It is also advantageous to determine the capacity D of the occupied memory part D of an information carrier.
- Information carrier can mean every structurally separate part of an information carrier memory which can be perceived as an independent member having a total capacity.
- a memory understood in such a manner means that a given information carrier can consist of a number of memories (e.g. hard disc partitions, independent layers of optical information carriers etc.)
- a total memory capacity R is deemed to be a capacity of a memory of a carrier in which utility data, or a given information carrier memory capacity containing utility data or other carriers own (specific) data (e.g. resulting from carriers specifics, its standard features etc.) can be saved.
- the capacity of a memory which will be saved on an information carrier after saving data, can be different from the capacity of a memory necessary to save these data. This difference can result from the fact that apart from these data also data containing information on the carrier itself are saved on the disc. Additionally the disc can contain also a verification key or a technical instrument (most usually a computer programme) for data access authorization.
- the capacity of a memory which will be saved on an information carrier is determined in the same way as the total memory capacity of the information carrier was determined, i.e. if the total information carrier memory contains the carriers specific information, the memory capacity stored on the information carrier must comprise the carriers specific information as well. Identically, should the information carrier memory capacity not include the information carrier specific information, then also the capacity of a memory which will be saved on an information carrier shall not contain specific information on the carrier itself. Thus in both cases one will have the identical capacity W of the unoccupied memory part of the information carrier.
- information about the information carrier memory include information on the capacity W of the unoccupied memory part of the information carrier.
- the unoccupied memory part of information carrier shall mean a part of memory where users will be able to store data at any time.
- an unoccupied memory part of an information carrier can also be understood as a memory part which a user cannot use.
- Such a case occurs with in particular optical information carriers of the CR-R, DVD-R, or DVD+R format. This happens due to the fact that after having saved data on an information carrier it "closes” thus making further data saving impossible, therefore, a part of the memory will remain empty.
- a system to secure data will enable to determine the capacity of such an unoccupied memory (e.g. with the aid of special reader or other device to this purpose)
- both the way to secure data and the way to read them according to the invention can be appropriately modified so that the capacity of the unoccupied memory W takes also into account - includes - the above defined unoccupied memory.
- information on the information carrier memory contain information concerning the capacity D of the occupied memory of the information carrier.
- the capacity D of the occupied memory of an information carrier can include all data saved in this carrier including data which are secured, all data which constitute the disc's specific information, a verification key, a technical instrument to authorize data access etc.
- information on the information carrier memory contain also information concerning the total capacity R of the carrier's memory.
- Information on the carrier's memory can include all the above-mentioned parameters concerning the information carrier memory under any configuration.
- the total memory capacity R of the information carrier is in any case a sum of the capacity W of the unoccupied memory of the information carrier and the capacity D of the occupied memory of this carrier.
- a verification key is saved on an information carrier, wherein this key can be saved along with data, which are the carrier's own specific information (e.g. the so-called Lead- in in case of optical information carriers) .
- a verification key can also be saved within the section of secured data - (even as selected parameters of secured utility data) .
- a verification key can also be saved on an information carrier in such a manner that it is placed there as e.g. data saved on an external label (or other physical part of a carrier) .
- a technical instrument for authorization of data access can also be saved on an information carrier.
- a verification key and a technical instrument serving to authorize the data access can be saved on an information carrier in parallel and independent of each other.
- both a verification key and technical instrument serving to authorize access to data are saved on an external information carrier, i.e. on any memory not being a given information carrier (e.g. a computer memory, other information carrier etc. ) .
- the object of the invention is a method of securing data of a data memory capacity X on an information carrier having a total memory capacity R 1 .
- the technical instrument serving ' to secure data is activated, next, parameters of the encoding and verifying key are determined.
- the parameter of the encoding-verifying key is at least one of parameters determined by: the total memory capacity Ri of the information carrier or the data memory capacity D 1 which will be saved on an information carrier or the capacity Wi of the unoccupied memory part of an information carrier, which after saving data in the carrier will remain unoccupied.
- the capacity Ri of the total memory of an information carrier is a sum of the data memory capacity Di that will be saved on this information carrier and the capacity W x of the unoccupied memory of the information carrier after having saved data will remain unoccupied is fulfilled.
- parameters of the encoding-verifying key are determined and herein at least one of the three capacities is determined: the total memory capacity Rl of an information carrier or the data memory capacity Dl which will be saved on an information carrier or the capacity Wl of the unoccupied memory part of an information carrier which after saving data in the carrier will remain unoccupied.
- data of the X capacity are encoded with the encoding-verifying key parameters and encoded are saved on the information carrier. After saving data in an information carrier the memory capacity of data saved on this carrier is Di and the capacity of the unoccupied memory of the information carrier after saving data is Wi.
- the sequence of the above-described steps can be, however, other than that.
- the parameter of the enocoding-veryfying key can be a parameter determined by the total capacity Ri of the information carrier.
- the parameter of the enocoding-veryfying key can also be a parameter determined by the data memory capacity D 1 that will be saved on the information carrier.
- the data memory capacity D x which will be saved on an information carrier is larger than the data memory capacity X, thus enabling for the data capacity to be filled up after encoding to the required capacity Di with lacking bits (bytes) .
- the parameter of the enocoding-veryfying key can also be a parameter determined by the capacity Wl of the unoccupied memory of the information carrier, which after saving data will remain unoccupied.
- Wl the capacity of the unoccupied memory of the information carrier
- Understanding a memory in such a way means that a given information carrier can consist of a number of memories (e.g. hard disc partitions, independent layers of optical information carriers etc.) Memory capacities are expressed in memory units e.g. in bits or bytes.
- a total memory capacity R is deemed to be a capacity of a an information carrier in which utility data can be stored (therefore the information carrier data memory capacity, where carriers own data such as e.g. data on the carriers specifics, its standards like the so-called TOC - Table of Contents in case of optical carriers etc. are stored, is neglected) .
- the capacity D of the data memory includes all the data, which will be saved on an information carrier excluding data on the carrier' s own specifics - carrier's specific features. For example an encoding- verifying key or a technical instrument (most usually a computer programme) for data access authorization can also be saved on an information carrier.
- the memory part of a given information carrier which holds carriers own characteristic data, can also be taken into consideration.
- the capacity W of the unoccupied memory of an information carrier shall be understood this part of a memory in which a user can at any time save data.
- the total memory capacity R of an information carrier is in any case a sum of the capacity W of the unoccupied memory part of an information carrier and the capacity D of the data memory. It is of benefit when the capacity W of the unoccupied memory of an information carrier is greater than zero.
- this part of memory a user cannot use can also be understood as the unoccupied memory part of an information carrier.
- the way to secure data and the way to read them according to the invention can be appropriately modified so that the capacity of the unoccupied memory W takes includes also the above defined unoccupied memory.
- a technical instrument serving to authorize the data access is saved on an external information carrier, i.e. on any memory not being a given information carrier (e.g. a computer memory, other information carrier etc.).
- the object of the invention is also a method of reading data secured on an information carrier having a total memory R 2 consisting in that that as a first step a technical instrument to authorize access to is activated.
- the parameters of the encoding and verifying key are determined, wherein the parameter of the encoding-verifying key is at least one of the parameters determined by the total memory capacity R of the information carrier or the data memory capacity D of the information carrier or the capacity W of the unoccupied memory part of the information carrier, wherein the total memory capacity R of the information carrier is a sum of the capacity W of the unoccupied memory part of the information carrier and the data memory capacity D.
- parameter values of the encoding-verifying key are determined and herein in order to determine these values at least one of the three capacities is determined: the total memory capacity R of the information carrier or the capacity D of the information carrier data memory or the capacity W of the unoccupied memory part of the information carrier.
- the data secured in the information carrier are decoded with the parameter values of the encoding-verifying key.
- the access to • data secured on the information carrier is authorised.
- the sequence of individual steps as presented above, can be different.
- a parameter of an encoding-verifying key can be a parameter determined by the total memory capacity R of the information carrier or the capacity D of the information carrier data memory or the capacity W of the unoccupied memory part of the information carrier. All the said parameters can occur jointly under any possible combination.
- the object of the invention is a method to secure data ' according to which a technical instrument serving to secure data is activated, next, at least one parameter of the verifying key is determined, wherein the parameter of the verifying key is the parameter for identification of a device designed to authorise access to the secured data.
- the parameter of the verifying key is the parameter for identification of a device designed to authorise access to the secured data.
- parameters of the encoding-verifying key are determined and data are secured against the values of the encoding- verifying key parameters, and finally data are saved in the memory of the device designed to authorize access to the secured data.
- the order or the stages mentioned above can differ from the order as per above.
- the device designed to authorise access to secured data communicates with a system of distribution of secured data, which can be encoded by standard encoding methods.
- the encoded data are sent from an encoded data distribution system to the device for authorisation of access to the secured data and the encoded data are saved in the memory of the device for authorisation of access to the secured data, finally in the last step the data are decoded.
- all stages of securing data against the values of the verification key parameters are carried out, wherein the parameters of the verification key are parameters for identification of the device for authorisation of access to the secured data.
- Such a variation of the invention consists in fact in a specific way data are delivered to the device for authorisation of access to the secured data.
- a system for distribution of encoded data the following can serve: e.g. a data distribution server for e.g. computer programmes, computer games, mobile phone software etc.
- data are not secured in a device for authorisation of data access but in a data securing system.
- a device for authorisation of data access communicates with a system for data securing.
- determination of the verification key parameters information which enable to determine the values of the verification key parameters are sent from the device for authorisation of access to secured data to the data securing system and additionally after securing data against the values of the verification key parameters the secured data are sent from the data securing system to the device for authorisation of access to the secured data.
- a parameter for identification of the device for authorisation of access to the secured data can be a sequence of digits (e.g. a sequence of digits and characters, abstract data saved in any part of the device for authorisation of access to the secured data) . It can as well be a physically measurable parameter, e.g. capacities of various memories of the device to authorise access to the secured data.
- a memory of authorisation of the device for authorisation of access to secured data is determined, wherein the parameter for identification of the device for authorisation of access to secured data is a parameter of the memory of the device for authorisation of access to secured data.
- the memory of the device for authorisation of access to the secured data can be a physically (structurally) separated memory (stem - nucleus) of the device, it can be also a partition of any part of a device memory made to this purpose. It is of benefit when a parameter of the device to authorise access to secured data is a parameter concerning the authorisation memory of the device for authorisation of access to the secured data..
- parameters can serve in particular the total memory capacity Ri of the device for authorisation of access to secured data or the capacity Di of data saved in the authorisation memory of the device for authorisation of access to secured- data, or the capacity Wi of the unoccupied memory part the device for authorisation of access to secured data.
- These parameters can.- occur jointly under any configuration, however the relationship that the total capacity Ri of the authorisation memory is a sum of the capacity Di of data saved in the authorisation memory and the capacity Wi of the unoccupied part of the authorisation memory is always true.
- a good feature of the memory for authorisation of the device for authorisation of access to the secured data is its unique character, which can consist in it having non-standard (rarely occurring) features such as .
- the total capacity R 2 of the memory designed to store the secured data of the device for authorisation of access to the secured data is determined and the parameters of this memory can be used as parameters of the verification key. It is an advantage when these parameters are the total capacity R 2 of the memory designed to save secured data, or the capacity D 2 of the data memory, which will be saved in the memory, designed to store secured data or the memory W 2 of the unoccupied memory part of the memory to save secured data. These parameters can occur jointly under any configuration, however, the relationship that the total capacity R 2 of the memory designed to store secured data is a sum of the capacity D 2 of the data memory which will be saved in the memory designed to store secured data and the capacity W 2 of the unoccupied memory part which will remain unoccupied in the memory designed to save secured data.
- the object of the invention is a method to secure data according to which a technical instrument serving to secure data is activated, next, parameters of the verifying key are determined, wherein the parameter of the verifying key is the parameter for identification of the device designed to authorise access to secured data.
- the verification key parameter values are determined, the secured data are decoded with the values of the verification key parameters, and, if the values of the verification key parameters used for data decoding are equal to those of the verification key which have been used before for data securing, access to the secured data is authorised.
- the order of the above stages can however be other.
- the values of the verification key parameters sent from the data securing system to the device for authorisation of access to secured data are read and the determined values of the verification key parameters are compared to the values of the verification key parameter sent from the data securing system to the device for authorization of access to secured data. If there is such a need the encoded data are decoded; this can be possibly done with the values of the verification key parameters. In this case sending the parameters of the verification key from the data securing system to the device designed to authorise access to the secured data is not necessary. On the other hand it can turn out that it is also necessary to decode the parameter values used for securing/encoding the data sent from the data securing system to the device designed to authorise access to secured data.
- the parameter for identification of the device for authorisation of access to the secured data can be a sequence of digits (e.g. a sequence of digits and characters, abstract data saved in any part of the device for authorisation of access to the secured data) . It can as well be a physically measurable parameter, e.g. capacities of varoius memories of the device to authorise access to the secured data.
- Every structurally separated part of memory which can be regarded an independent member characteristic for its total capacity can also be understood as a memory.
- a memory understood in such a way can be composed of several memories (e.g. a computer hard disc partition etc.).
- Memory capacities are expressed in memory units e.g. in bits or bytes.
- a total memory capacity R is deemed to be a memory capacity where utility data can be saved (therefore the part of a memory where memory own specific data such as e.g. data on the memory specifics, its standards like an allocation map etc. are stored, is neglected) .
- the capacity D of the data memory includes all the data, which will be saved in it excluding data on memory own specific information. As an example in a memory also a verification key or a technical instrument (most often a computer programme) can be saved.
- the total capacity R or the data memory capacity D also the memory capacity, where memory own characteristic data are saved, can be taken into consideration.
- the memory of authorisation of the device for authorisation of access to secured data is determined, wherein the parameter for identification of the device for authorisation of access to the secured data is a parameter of the memory of the device for authorisation of access to secured data.
- the memory of the device for authorisation of access to the secured data can be a physically (structurally) separated memory (stem - nucleus) of the device. It can be also a partition of a memory of a device made to this purpose. It is of benefit when a parameter of the device to authorise access to secured data is a parameter concerning the authorisation memory of the device for authorisation of access to secured data.
- parameters can serve in particular the total memory capacity Rl of the device for authorisation of access to secured data or the capacity Dl of data memory saved in the authorisation memory of the device for authorisation of access to secured data, or the capacity Wl of the unoccupied memory part the device for authorisation of access to secured data.
- These parameters can occur jointly under any configuration however the relationship that the total capacity Rl of the authorisation memory is a sum of the capacity Dl of data saved in the authorisation memory and the capacity Wl of the unoccupied part of the authorisation memory is always true.
- a good feature of a memory for authorisation of a device for authorisation of access to secured data is this it has unique features, which can consist in it having non-standard (rarely occurring) features such as a unique (non-standard) total capacity Rl of the authorisation memory or a unique (non-standard) capacity Dl of data saved in the authorisation memory or also a unique (non-standard) capacity Wl of the unoccupied memory part of the authorisation memory.
- non-standard rarely occurring
- the memory of the total capacity R2 of a device designed authorise access to secured data, in which memory these secured data are stored is identified, and the parameters of this memory can be used as parameters of the verification key. It is good when these parameters are e.g. the total memory R 2 of the memory where secured data are saved or the capacity D 2 of the memory in which secured data are saved or the capacity W 2 of the unoccupied memory part in which secured data are saved. These parameters can occur jointly under any configuration however the relationship that the total capacity R 2 in which secured data are saved is a sum of the capacity D 2 of the memory where secured data are saved and the capacity W 2 of the unoccupied part of the memory where secured data are saved is always true.
- the object of the invention is also a technical instrument to secure data, which enables to determine at least one parameter of the verifying key, wherein the parameter of the verifying key is the parameter of identification of the device designed to authorise access to secured data and next to determine the values of the verification key parameters and to secure data against the values of the verification key parameters.
- this technical instrument makes it also possible for the device for authorization of access to secured data to communicate with the data securing system and to send information which enable to determine the values of the verification key parameters from the device for authorisation of access to secured data to the data securing system.
- this technical instrument enables to encode data against the verification key parameter values.
- the task of the technical instrument is also to enable to determine the authorization memory of the device for authorization of access to secured data. If the parameters for identification of the device for authorisation of access to secured data are the parameters of the authorization memory of the device for authorization of access to secured data then the technical device designed to secure data enables also to determine these parameters such parameters as e.g. the total capacity Ri of the memory for authorization of the device for authorization of access to secured data, the capacity D x of the memory of data saved in the authorization memory of the device for authorization of access to secured data or the capacity Wi of unoccupied memory part of the authorization memory of the device for authorization of access to secured data.
- the technical device designed to secure data enables also to determine these parameters such parameters as e.g. the total capacity Ri of the memory for authorization of the device for authorization of access to secured data, the capacity D x of the memory of data saved in the authorization memory of the device for authorization of access to secured data or the capacity Wi of unoccupied memory part of the authorization memory of the device for authorization of access to secured data.
- this technical instrument enables to determine the total capacity R 2 of the memory designed to save secured data, the capacity D 2 of the memory for data which will be saved in the memory designed to store secured data or the capacity W 2 of the unoccupied memory designed to save secured data. It is of benefit that the technical instrument is saved in the memory of the device for authorization of access to secured data.
- the object of the invention is a method of authorization of access to a secured device according to which method the secured device can communicate with an information carrier, which authorizes access to a secured device after which communication the technical instrument serving to authorize access to such secured device is activated.
- the next stage at least one parameter of the verification key is determined, the values of the verification key parameters are determined against the parameters of the information carrier, which serves for authorization of the access to the secured device and the latter access is authorized.
- the order of individual stages can be other than that.
- the data the information carrier, which authorizes access to a secured device, contains, are decoded against the verification key parameter values and the access to the secured device is authorized with these decoded data .
- the values of the parameters for authorization of the secured device are determined and the verification key parameter values determined against the parameters of the information carrier, which authorizes access to the secured device, are compared to the parameters for authorization of the secured device.
- the data contained on the information carrier, which authorizes access to the secured device are encoded, they are decoded.
- This decoding can be performed with the help of the verification key parameter values, the values of parameters for authorization of a secured device. It can also be necessary to decode the parameters for authorization of the secured device and this decoding can be executed with the values of the verification key parameters .
- the parameter of the verification key can be a sequence of digits (i.e. any set of digits or characters) or a physically measurable parameter.
- the verification key parameter is the parameter of the memory of the information carrier, which authorizes access to the secured device, which parameter can be a unique parameter
- an information carrier designed to authorise access to the secured device can be given an "individualised” character.
- the parameters of the information carrier for authorisation of access to the secured device can be in particular the following: the total capacity Ri of the information carrier which authorizes access to the secured device, the capacity Di of the data saved in the information carrier, which authorizes access to the secured device, or the unoccupied capacity Wi of the information carrier, which authorises access to the secured device.
- the parameter for authorisation of the secured device can be a sequence of digits or a physically measurable parameter.
- the parameter for authorization of the secured device is the parameter of the memory for authorization of the secured device, wherein with this version of the invention of a method of authorizing access to the secured device, takes place identification of the authorisation memory of the secured device.
- the parameter of authorisation of a secured device can be a unique parameter (non-standard - rarely occurring) .
- the uniqueness can consist in the parameter to have non-standard (rarely occurring) features.
- a secured device can be ,,personalized" .
- the parameters ( of the memory for authorization of a secured device can be, among others, the following: the total capacity R 2 of the memory for authorisation of a secured device, the capacity D 2 of data saved in the memory for authorisation of a secured device or the capacity W 2 of the unoccupied part of the memory for authorisation of a secured device. These parameters can occur jointly under any configuration, however, the relationship that the total capacity R 2 of the memory for authorization of the secured device is a sum of the capacity D 2 of data saved in the memory for authorization of the secured device and the capacity W 2 of the unoccupied part of the memory for authorization of the secured device is always true.
- the object of the invention is also a method of reading the data secured on an information carrier consisting in that the technical instrument to authorize data access is activated.
- the verification key is identified, and this identification consists in finding this key being saved on an information carrier (or anywhere else) .
- the information on the memory of the information carrier contained in the verification key is determined and then the actual parameters of the information carrier are determined.
- the information contained in the verification key are verified against the actual parameters of the information carrier memory, wherein this verification consists in comparing the data contained in the verification key with the physically measurable parameters applying to the memory of the said carrier.
- the parameters of the memory of the information carrier are such as the capacity W of the unoccupied memory of the information carrier, the capacity D of the occupied memory part of the information carrier and the total capacity R of the information carrier, at any combination of these parameters, wherein the total memory capacity R of the information carrier is in any case a sum of the capacity W of the unoccupied memory part of the information carrier and the capacity D of the occupied memory of the information carrier.
- the object of the invention is also an information carrier containing secured data, which can be read with a technical device serving for authorization of access to data and with the verification key containing information on the information carrier memory.
- the information carrier has a total memory and an occupied memory.
- the parameters of the information carrier contained in the verification key are such parameters as the capacity W of the unoccupied memory part of the information carrier, the capacity D of the occupied memory of the information carrier and the total memory capacity R of the information carrier, at any combination of these parameters, wherein under boundary conditions the capacity W of the unoccupied memory part of the information carrier can be 0.
- An information carrier can be any information carrier for saving and storing information.
- any carrier including external memories, internal memories, volatile memories, permanent memories in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- ROM, PROM, EPROM, flash EPROM, NVRAM etc.
- an external and internal memory is understood every permanent and volatile memory in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- the object of the invention is also an information carrier containing secured data, characterized in that it has a data memory capacity D and a total memory capacity R of the information carrier, wherein the latter is a sum of the data memory capacity D and the capacity W of the unoccupied memory part.
- the data saved in the information carrier can be read with the technical instrument serving to authorize access to data and the encoding and verifying key, wherein the parameter of the latter key is at least one of the parameters determined by: the total memory capacity R of the information carrier or the capacity D of the data memory or the capacity W of the unoccupied memory part of the information carrier.
- a parameter of an encoding-verifying key can be a parameter determined by the total memory capacity R of the information carrier or a parameter determined by the capacity D of the information carrier data memory or a parameter determined by the capacity W of the unoccupied memory part of the information carrier and all the said parameters can occur jointly under any possible combination.
- An information carrier can be any information carrier for saving and storing information.
- Information carrier can be understood as any carrier including external, internal, or volatile memories, or permanent memories, in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- ROM, PROM, EPROM, flash EPROM, NVRAM etc.
- an external and internal memory is understood every permanent and volatile memory, in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- the object of the invention is also an information carrier which authorizes access to a secured device, which has at least one parameter of the information carrier, which determines values of the verification key parameters, wherein access to the secured device is authorized with the values of the verification key parameters.
- the parameter of the information carrier, which authorizes access to the secured device is a parameter of the information carrier memory, which authorizes access to the secured device, wherein this parameter can be a unique parameter.
- These parameters can be in particular: the total capacity Rl of the information carrier which authorizes access to the secured device, the capacity Dl of the data saved in the information carrier, which authorizes access to the secured device, or the unoccupied capacity Wl of the information carrier, which authorises access to the secured device .
- An information carrier can be any information carrier for saving and storing information.
- Information carrier can be understood as any carrier including external, internal, or volatile memories, or permanent memories, in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- ROM, PROM, EPROM, flash EPROM, NVRAM etc.
- an external and internal memory is understood every permanent and volatile memory in particular hard discs, floppy discs, optical carriers, magnetic carriers, mechanical carriers, semi conductor memories (e.g. ROM, PROM, EPROM, flash EPROM, NVRAM, etc.).
- Every structurally separated part of a memory (e.g. of an information carrier, computer or any other device) can be understood as a memory, which memory can be regarded an independent member characteristic for its total capacity.
- a memory understood in such a manner signifies that a given information carrier or device can consist of a number of memories (e.g. hard disc partitions, independent layers of optical information carriers etc.)
- Memory capacities are expressed as memory units e.g. in bits or bytes.
- a total memory capacity R is deemed to be a capacity of a memory in which utility data can be stored (therefore the information carrier data memory capacity storing carriers own data such as e.g. data on the carriers specifics, its standards like the so-called TOC - Table of Content in case of optical carriers etc.), is neglected.
- the capacity D of the data memory includes all the data, which will be saved on an information carrier, to the exclusion of data on the carrier own specifics - carrier specific features.
- the memory capacity where the information carrier own characteristic data are saved can be taken into consideration - included.
- the capacity W of the unoccupied memory shall be understood this part of the memory, in which a user can at any time save data, wherein in any case the total memory capacity R is a sum of the capacity W of the unoccupied memory and the capacity D of the memory where data are stored. It is of benefit when the capacity W of the unoccupied memory part is greater than zero. Under certain circumstances as the unoccupied memory can also be understood the memory part, which a user cannot use. Such a case can occur in particular with optical information carriers of the CR-R, DVD-R, or DVD+R etc. format, as it can turn out that after saving data on a carrier it "closes", therefore a further saving of data on it will be impossible and a part of the memory will remain not utilized.
- both the way to secure data and the way to read them according to the invention can be appropriately modified so that the capacity W of the unoccupied memory comprises also the above defined unoccupied memory.
- the object of the invention is also a technical instrument for authorization of access to data, which enables to identify the verification key, to determine information contained in the later key and concerning the information carrier memory, to determine the actual parameters of an information carrier and to verify information contained in the verification key against the actual parameters of an information carrier memory. If the verification is positive the technical instrument enables to authorize access to data secured on the information carrier, it is of benefit .. when a technical instrument serving for authorisation of access to data is a computer programme. A technical instrument serving for authorization of access to data can also be a device.
- the object of the invention is also a technical instrument designed to secure data, enabling to determine parameters of the encoding-verifying key, next to determine values of the parameters of the encoding- verifying key and to encode data with the values of the parameters of the encoding-verifying key.
- This technical instrument which serves to secure data, enables also to determine the total capacity Ri of the information carrier memory.
- this technical instrument enables prior, to encoding a priori to determine the capacity Di of the data memory, which will be saved on the information carrier, and to determine the capacity W x of the unoccupied memory part of the information carrier, which after having saved data will remain unoccupied. It is of benefit when the technical instrument serving for securing data is a computer programme, however, it can be also a device.
- the object of the invention is the technical instrument serving to authorise access o data, enabling identification of the encoding and verifying key, next to determine the parameters of the encoding-verifying key, wherein a parameter of the encoding-verifying key is at least one of the parameters determined by the total memory capacity R of the information carrier or the data memory capacity D of the information carrier or the capacity W of the unoccupied memory part of the information carrier, wherein the total memory capacity R of the information carrier is a sum of the capacity W of the unoccupied memory part of the information carrier and the data memory capacity D.
- the technical instrument designed to authorise access to data enables as well to determine the values of the encoding-verifying key parameters wherein in order to determine the values of the encoding-verifying key parameters at least one of the three capacities is determined: the total memory capacity R of the information carrier or the capacity D of the data memory or the capacity W of the unoccupied memory part of the information carrier. All the said parameters can occur jointly under any possible combination.
- the technical instrument to authorise the access to data enables also to decode data secured in the information carrier with the values of the encoding-verifying key parameters and enables to authorise access to data secured in the information carrier in case the values of the encoding-verifying key used for data decoding comply with the encoding-verifying key parameter values used for data encoding, it is of benefit when the technical instrument serving for authorisation of access to data is a computer programme.
- the technical instrument serving for authorization of access to data can also be a device.
- the object of the invention is also a technical instrument to authorise access to data, which enables to determine at least one parameter of the verifying key - wherein a parameter of the verifying key is the parameter of identification of the device designed to authorise access to secured data - and next enables to determine the values of the verification key parameters and to decode data with the values of the verification key parameters.
- this technical instrument enables to read the values of the verification key parameters sent from the data securing system to the device for authorisation of access to the secured data and enables to compare the determined values of the verification key parameters to the values of the verification key parameter sent from the data securing system to the device for authorization of access to the secured data.
- this technical instrument enables to decode the encoded data where this decoding of encoded data can be executed with the values of the verification key parameters.
- the task of the technical instrument is also to enable determination of the authorization memory of the device for authorization of access to the secured data. If the parameters for identification of the device for authorisation of access to secured data are the parameters of the authorization memory of the device for authorization of access to secured data then the technical device designed ,to secure data enables to determine these parameters i.e. such parameters as the total capacity Rl of the memory for authorization of the device for authorization of access to secured data, the capacity Dl of the memory of data saved in the authorization memory of the device for authorization of access to secured data or the capacity Wl the unoccupied memory of the authorization memory of the device for authorization of access to secured data.
- this technical instrument enables to determine the total capacity R 2 of the memory designed to save the secured data, the capacity D 2 of the memory for data, which will be saved in the memory designed to store secured data or the capacity W 2 of the unoccupied memory designed to save secured data.
- the object of the invention is also a secured device, characterised in that that during the process of authorization of the data access to the secured device the values of the verification key parameters are used, wherein the values of the verification key parameters are determined against the parameters of the information carrier, which serves for authorization of access to the secured device.
- a secured device is provided with an authorization memory, wherein the authorisation memory can have authorisation parameters and the parameter for authorisation of the secured device can be the memory parameter for authorisation of the secured device.
- the parameter for authorization of the secured device can be a unique parameter.
- parameters for authorization of the secured device are as follows : the total capacity R2 of the memory for authorization of a secured device, the capacity D2 of data saved in the memory for authorisation of the secured device or the unoccupied capacity W2 of the memory for authorisation of the secured device. Every device capable of communication with an information carrier for authorisation of an access can be understood as a device.
- the object of the invention is in addition a device designed for authorized access to secured data, which has an authorization memory of the total capacity Ri, wherein the total capacity Ri of the authorisation memory can be a unique memory (i.e. a non-standard one).
- the authorisation memory can contain also saved data of the data capacity Di, wherein the capacity D 1 of the data memory can also be a unique capacity (non-standard) .
- the object of the invention is also an encoding and verifying key, characterised in that it contains information about the information carrier memory.
- the verification key acting in conjunction with the technical device serving for authorization of access to data enables to get access to data.
- Information concerning the information carrier memory advantageously comprises the capacity W of the unoccupied memory part of the information carrier, the capacity D of the occupied memory of the information carrier and the total memory capacity R of the information carrier, at any combination of these parameters.
- the verification key can be saved at any place and at any amount. Therefore the verification key can be read from several points.
- the object of the invention is also a system containing secured data, which consists of an information carrier contain secured data and of a technical instrument serving for authorization of access to data and of a verification key.
- the data secured in the information carrier can be read with the help of a technical instrument for authorization of access to data for which reading the data contained in the verification key are utilized.
- the parameters of the memory of the information carrier are such as the capacity W of the unoccupied memory part of the information carrier and the total memory capacity R of the information carrier, at any combination of these parameters, wherein the total memory capacity R of the information carrier is in any case a sum of the capacity W of the unoccupied memory part of the information carrier and the capacity D of the occupied memory of the information carrier.
- the system can additionally consist of an external information carrier, in which the verification key containing information on the information carrier memory or on the technical instrument is saved. Under certain circumstances the system containing secured data can be understood as a device.
- the object of the invention is also the encoding and verifying key a parameter of which is at least one of the parameters determined by the total memory capacity R of the information carrier or the data memory capacity D or the capacity W of the unoccupied memory part of the information carrier, wherein the total memory capacity of the information carrier R is a sum of the capacity W of the unoccupied memory part of the information carrier and the data memory capacity D.
- a parameter of an encoding-verifying key can be the parameter determined by the total memory capacity R of the information carrier or the capacity D of the information carrier data memory or the capacity W of the unoccupied memory part of the information carrier, and all the said parameters can occur jointly under any possible combination.
- the object of the invention is also a system containing secured data, which consists of an information carrier containg secured data, of a technical instrument serving for authorization of access to data and of an encoding-verifying key.
- the data secured in the information carrier can be read with the help of the technical instrument for authorization of access to data and the verification key.
- the parameter of the encoding-verifying key is at least one of parameters determined by: the total memory capacity R of the information carrier or the capacity D of the data memory or the capacity W of the unoccupied memory part of the information carrier. All the said parameters can occur jointly under any possible combination.
- the object of the invention is also a system for securing and reading of the secured information consisting of the data security system and the device for authorization the access to the secured data it communicates of the total capacity R 1 .
- the system can consist of a greater number of devices, wherein a verification and authorization can be carried out from outer devices also remotely.
- the object of the invention is a system for authorization of communication between devices, characterized in that it consists of at least two devices communicating with each other, wherein at least one of these devices has the authorization memory of the Rl capacity and these parameters can serve to secure data being transmitted between them. In addition they can serve to gain access to these data
- the invention can be applied in such a manner that every user can secure any data with unique parameters of his own computer (or other device) .
- a computer network which authorizes access to secured data only under condition that computers comply with requirements set by unique parameters with which these data have been secured.
- the main advantage of the device is a fact that a legal user will always be able to make a legal safety copy of a legally obtained product against unique parameters of his own device (or several such devices/appliances - home cinema, car audio system, DVD, PCs, mobile phone etc.).
- a verification key can comprise more than one unique parameter.
- the object of the invention is a system authorising a secured device characterized in that it consists of at least one secured device and of at least one information carrier, which authorizes access to the secured device.
- a secured device can at the same time function as an information carrier, which authorizes access to the secured device.
- an information carrier which authorizes access to a secured device, can at the same time function as a secured device.
- the object of the invention is in addition a technical instrument for authorization of access to a secured device, which is capable of performing all stages of the disclosed way to authorize access to a secured device. It is also of benefit when a technical device (or any programme) is saved in an authorisation memory of a secured device, which causes that any attempt of modification of its source code will result in a change of authorization memory parameters and thus consequently in making the authorisation of access to the secured device impossible. Moreover a change of the integrity of a code of a technical instrument can be detected by other technical instrument (e.g. a computer programme), thus it being an additional security measure.
- a technical instrument can be a computer programme or a device.
- a secured device there can be more than one authorization memory.
- an essential programme of a secured device can be saved in the authorization memory and should it be modified it will result in a faulty (or none at all) functioning of this secured device .
- the object of the invention is also a method of adapting any information carrier to this purpose so that it can be used as an information carrier, which authorizes access to a secured device.
- data saved .on an information carrier, which authorizes access to a secured device can be data concerning individual settings of functioning of a secured device and with time they can be subject to changes.
- This invention finds application also for reciprocal identification of devices, which can cooperate and establish a special system.
- Other application can be an identification (or authorization) of data saved in an information carrier and secured with the values of identification key parameters. Verification and authorisation can be carried out with the help of an additional external device. E.g. a verification key can be saved on, an external information carrier (other than the information carrier, which authorizes access to a secured device) .
- a special use of the invention can be a case when a technical instrument performs an auto verification i.e. checks if a memory in which it is saved fulfils prescribed parameter requirements, for example a capacity D of data there stored, a total memory capacity R, etc.
- a verification key can contain information required for verification of the integrity (or originality) of data saved in an authorization memory.
- the object of the invention is shown as practical examples of its realization.
- Fig.l illustrates an information carrier containing secured data, which also acts as an information carrier for authorisation of access to a secured device.
- a block diagram of a method of securing data on an information carrier is shown in Fig.2. This diagram is also a diagram of a method of authorization of access to a secured device.
- Fig.3 is a block diagram of a method of reading data secured in an information carrier and
- Fig. 4 presents a system containing secured data.
- Fig.5 presents a system for authorization of a secured device.
- Fig. 6 we can see a system for securing and reading data.
- the figure 7 presents schematically the system for reading data secured on an information carrier. Practical examples of the invention
- a CD released by EMTEC and shown in Fig. 1 can be used. With this CD it is possible to check the parameters of an information carrier, i.e. parameters of the carriers memory. Subsequent stages of securing data are presented schematically in Fig. 2.
- the total capacity memory R of this carrier including information from the CD contained in the so-called Lead-in is 736 958 464 bytes.
- the radius of the physical part of the disc on which data can be saved is designated in Fig 1 as A and the letter E in Fig. 2 signifies a stage for determination of the total memory capacity.
- the capacity of information of a utility programme to be saved on the disc is determined - in this case this capacity is 188 953 640 bytes.
- the amount of information of the computer programme to be executed (type *.exe).
- the latter computer programme will be a technical instrument to authorize access to data to be secured.
- the technical means will be saved on a carrier (it can be also placed elsewhere) .
- the amount of this information is 5 505 981 bytes. Since for determination of the total memory capacity R the data concerning the standard specification of an information carrier were taken into account, the amount of these data of 23 490 560 must also be considered.
- the verification key will be saved on the carrier, therefore additional 27 memory bytes shall be reserved for the key.
- Fig. 1 shows the radius of the physical part of the disc where the data were saved - the radius is designated B - and this stage was schematically designated F in the Fig. 2. Therefore the capacity of the unoccupied memory part will be 519 008 256 bytes and the radius of the physical part of the disc, in which no data were saved is designated in Fig. 1 as C - this stage, is presented schematically as G in Fig. 2.
- the verification key is created which contains three determined it this way and joined together values R, D and W - this is presented schematically as H in Fig. 2.
- the utility programme i.e. the executable computer programme (which is the technical instrument for authorisation of access do data subject to securing) and the verification key are saved on the CD-R.
- the stage of saving data on a carrier is illustrated schematically in Fig. 2 and designated as I.
- Fig. 4 which consists of the CD-R with the secured data, saved as presented in the example above, and designated as P in Fig. 4.
- the system includes also a drive designated S in Fig.4. This drive is a part of part of a computer Q in Fig.4.
- the programme determines the actual parameters of the carrier memory, i.e. the actual total memory capacity of the disc and the actual capacity of the unoccupied memory part of the disc and the actual occupied memory part of the disc (letter M in Fig. 3) .
- the programme compares the values R, D and W with the actual values (designated N and presented schematically in Fig. 3) . If the values are identical, the access to the secured data is authorised. In case the compared values differ, the access authorisation is denied (this step is designated with 0 in Fig. 3) .
- the utility data securing system operates in such a manner that if utility data were copied from an original carrier onto another one, a new carrier, then the values R, D and W saved in the verification key will not be equal to the actual parameters of the memory of the new carrier (i.e. with the actual total capacity of the disc, the actual capacity of the unoccupied memory part and the actual occupied memory part of the disc) . This occurs especially when an original carrier in which the secured data were saved has a "non-standard" total memory capacity.
- a ,,non-standard" total memory capacity is such a memory capacity, which is not available (or easy available) on the market of memories for saving data (e.g. CD-R, DVD-R or DVD+R format discs of a total memory unavailable on the market ) .
- a CD-R disc released by EMTEC and shown in Fig. 1.
- This CD it is possible to check the parameters of an information carrier, i.e. parameters, which apply to the carrier's memory.
- the letter A in Fig. 1 designates a data area within which utility data can be saved (excluding CD-R own characteristic information contained in the so-called Lead- in) of a total capacity R which in our case amounts to 713 467 904 bytes.
- a total memory capacity X of 165 463 080 bytes.
- Fig. 2 Subsequent stages of securing data are presented schematically in Fig. 2, where the letter E signifies the first stage i.e. starting a technical instrument (which is an executable computer programme) designed to secure utility data of a memory capacity X.
- the next stage of determination of the encoding-verifying key parameters is denoted F in Fig. 2.
- the technical instrument serving to secure utility data determines that the parameters of the encoding- verifying key are the two described hereinafter.
- This stage denoted G is presented in Fig. 2.
- the resulting unoccupied memory capacity W of the disc is 529 346 892 bytes.
- the letter B designates the part of the disc on which the data of the data memory capacity D of 184 121 012 bytes are saved.
- C denotes the unoccupied area the capacity ,W of the memory which is 529 346 892 bytes.
- the activated technical instrument designed to authorise access to secured data is provided with information that the parameters of the encoding-verifying key are the two parameters as follows .
- the next stage of reading the data secured on the disc is the determination of the values of these parameters and this is presented in Fig. 3 as the N.
- FIG. 4 An exemplary system containing the secured data according to the invention is shown in Fig. 4, where the information carrier containing secured (encoded) data (a CD-R) is designated P.
- the system comprises also a drive - S in Fig. 4.
- This drive is a component of a computer - Q in Fig 4.
- the utility data securing system operates in such a way that in case utility data were copied from an original carrier onto a new carrier, then the parameter values of a verification key will not be equal to the actual memory parameters of that new carrier. This is especially true when the original carrier the secured data were saved on has a "non-standard" total memory capacity R.
- a non-standard total capacity we understand such a memory capacity, which is not available (or hardly available) on the market of memories for storing data (e.g. CD-R, DVD-R or DVD+R discs of a. total capacity not available on the marker) .
- a non-standard total memory capacity can differ only slightly from standard capacities available on the market.
- the utility data securing system can be used in conjunction with other security systems, it can constitute their stem - nucleus - or be subordinated to other solutions of this technical problem.
- a users computer of the PC class activates in a data security system (which is e.g. a server of a musical files distributor) a technical instrument serving for securing data which is an executable computer programme presented schematically in Fig. 2 under E. Due to operation of this programme the server connects to the users computer over Internet - Fig. 2, letter F.
- the computer programme determines that the verification key will be composed of two parameters - Fig.2, letter G.
- the first parameter will be the capacity Di of the data memory saved in the computer authorisation memory and the second one will be the capacity D 2 of the memory designed in the users computer memory to save the secured data.
- the computer authorisation memory and the computer memory designed to save the secured data are determined - Fig. 2, letter H.
- the computer on request of the server sends to it the determined value of Di (7808798 bytes) .
- Di the value of for authorisation of the computer memory - is a unique value ascribed to this computer.
- the server After sending over the determined memory values (i.e. in our case the determined values of the verification key) the server encodes a music file using the determined verification key parameter - Di, Fig. 2, letter I.
- the server encodes a music file using the determined verification key parameter - Di, Fig. 2, letter I.
- music file capacity will amount to 16113319 bytes, what corresponds exactly to the value of the parameter D 2 .
- the server encodes the parameter value D 2 with the parameter value Di and sends the encoded file and the encoded value of the parameter D 2 to the users computer - Fig. 2 - J.
- the users computer saves the encoded file in the predetermined computer memory designed to this, purpose.
- the technical instrument in the users computer is activated (an executable computer programme for authorisation of data access - Fig. 3 - L) .
- this programme "decides" that the parameters of the verification key will be the capacity Di of the data memory saved in the computer authorisation memory and the capacity D 2 of the data memory saved in the memory of the users computer designed to save secured data - Fig. 3 - M.
- the programme determines the value (unique) of the capacity Di of the data memory saved in the authorisation memory of the users computer and with this value decodes both the parameter D 2 - the data memory capacity saved in the users computer - and the downloaded musical file - see Fig. 3 - N. Further the programme verifies if the decoded parameter values D 2 corresponds to the actual value of the saved capacities - Fig. 3 - letter 0. After checking whether these values are equal, the programme enables the users access to the downloaded musical file - Fig. 3 - letter R.
- the figure 6 presents schematically the system for securing and reading data, where S signifies the server, which constitutes the data securing system, and P is the users computer - a device designed to authorise access to ..secure data .
- this disc is inserted into the drive for optical carriers of a secured device i.e. a PC thus it is possible for the disc to communicate with the PC.
- This technical instrument is an executable computer programme.
- the programme determines the verification key parameters - Fig. 2 - G.
- Fig.2 letter H shows the way the parameter values were determined.
- TKe encoded library of the graphic card controller is encoded with the determined parameter value Z 2 in the next process stage - Fig.2 - J.
- the capacity D 2 184 121 012 bytes of the memory saved in the authorisation memory of the computer is determined.
- a comparison of the values Di ..and D 2 follows. These values are identical therefore the access to the computer is authorised (Fig.2 - K) .
- the access to the computer is authorised also due to the fact that the library of the graphic card controller was decoded with a correct value thus making it possible for the computer to function properly.
- the utility data securing system operated in such a way that in case utility data were copied from an original carrier onto a new carrier, then the parameter values of a verification key will not be equal to the actual memory parameters of that new carrier. This happens especially when the original carrier the secured data were saved on has a "non-standard" total memory capacity of R. Under a non-standard total capacity we understand such a memory capacity, which is not available (or hardly available) on the market of memories for storing data (e.g. CD-R, DVD-R or DVD+R discs of a total capacity not available on the marker ) . However, a non-standard total memory capacity can differ only slightly from standard capacities available on the market.
- the utility data securing system can be used in conjunction with other security systems, it can constitute their stem - nucleus - or be subordinated to other solutions of this technical problem.
- a system for authorisation of a secured device composed of the computer L and the disc P is shown in Fig.5.
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Mobile Radio Communication Systems (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Storage Device Security (AREA)
Abstract
La présente invention concerne un procédé de sécurisation de données sur un support de données. Dans le procédé ci-décrit une capacité de mémoire totale R d'un support de données, une capacité de mémoire pour des données à sécuriser sur un support de données, une capacité W d'une partie de mémoire de données inoccupée sur un support de données sont déterminées ; une clé de vérification est déterminée, ladite clé contenant des informations sur la mémoire de support de données ; des données sont enregistrées sur un support de données. Le support de données contenant les données sécurisées se caractérise en ce qu'il a une capacité totale et une partie de mémoire occupée du support de données. La capacité de mémoire totale R est une somme des capacités de la partie de mémoire occupée D et de la partie de mémoire inoccupée W ; les données sécurisées dans le support de données peuvent être lues au moyen du dispositif technique servant à autoriser l'accès aux données et à la clé de vérification, laquelle contient des informations sur la mémoire du support de données.
Applications Claiming Priority (6)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| PL379085A PL379085A1 (pl) | 2006-03-02 | 2006-03-02 | Sposób zabezpieczania danych na nośniku informacji, sposób odczytywania danych zabezpieczonych na nośniku informacji, nośnik informacji zawierający zabezpieczone dane, środek techniczny służący do zabezpieczania danych, środek techniczny służący do autoryzacji dostępu do danych, klucz szyfrująco-weryfikujący oraz system zawierający zabezpieczone dane |
| PLP-379085 | 2006-03-02 | ||
| PLP-379096 | 2006-03-03 | ||
| PL379096A PL379096A1 (pl) | 2006-03-03 | 2006-03-03 | Sposób autoryzowania dostępu do zabezpieczonego urządzenia, nośnik informacji autoryzujący dostęp do zabezpieczonego urządzenia, zabezpieczone urządzenie oraz system autoryzujący zabezpieczone urządzenie |
| PLP-379095 | 2006-03-03 | ||
| PL379095A PL379095A1 (pl) | 2006-03-03 | 2006-03-03 | Sposób zabezpieczania danych, sposób odczytywania zabezpieczonych danych, środek techniczny służący do zabezpieczania danych, środek techniczny służący do autoryzacji dostępu do danych, urządzenie przeznaczone do autoryzowanego dostępu do zabezpieczonych danych, system do zabezpieczania i odczytywania zabezpieczonych danych oraz system do autoryzacji komunikowania się między urządzeniami |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| WO2007100267A2 true WO2007100267A2 (fr) | 2007-09-07 |
| WO2007100267A3 WO2007100267A3 (fr) | 2007-11-15 |
Family
ID=38288463
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/PL2007/000009 Ceased WO2007100267A2 (fr) | 2006-03-02 | 2007-03-02 | Procédé, support, clé et système pour sécuriser des données et lire des données sécurisées |
Country Status (1)
| Country | Link |
|---|---|
| WO (1) | WO2007100267A2 (fr) |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP3073590B2 (ja) * | 1992-03-16 | 2000-08-07 | 富士通株式会社 | 電子化データ保護システム、使用許諾者側装置および使用者側装置 |
| US6148407A (en) * | 1997-09-30 | 2000-11-14 | Intel Corporation | Method and apparatus for producing computer platform fingerprints |
| WO2002084496A1 (fr) * | 2001-04-16 | 2002-10-24 | Sunncomm, Inc. | Appareil et procede permettant d'authentifier un support lisible par un ordinateur |
| EP1429224A1 (fr) * | 2002-12-10 | 2004-06-16 | Texas Instruments Incorporated | Autentification du firmware en temps d'exécution |
| US7758422B2 (en) * | 2005-04-13 | 2010-07-20 | Microsoft Corporation | Hard drive authentication |
-
2007
- 2007-03-02 WO PCT/PL2007/000009 patent/WO2007100267A2/fr not_active Ceased
Also Published As
| Publication number | Publication date |
|---|---|
| WO2007100267A3 (fr) | 2007-11-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US6834347B2 (en) | Target self-security for upgrades for an embedded device | |
| US20070028115A1 (en) | Method for guaranteeing the integrity and authenticity of flashware for control devices | |
| US7096365B1 (en) | Digital signature | |
| EP2011268A1 (fr) | Procédé et appareil pour fournir du contenu codé | |
| WO2003001352A2 (fr) | Procede et systeme permettant de realiser une reproduction musicale numerique securisee | |
| CN101507224A (zh) | 保护数据盒带 | |
| CZ301556B6 (cs) | Zpusob autorizace uživatelského zarízení systému klíce a zámku a systém klíce a zámku | |
| JP2003513388A (ja) | 安全性が確保されたカウンタによりデータ信頼性を保証するシステム及び方法 | |
| US20060123483A1 (en) | Method and system for protecting against illegal copy and/or use of digital contents stored on optical or other media | |
| CA2332082C (fr) | Validateur a memoire flash amovible | |
| US6173057B1 (en) | Method of making secure and controlling access to information from a computer platform having a microcomputer | |
| AU2001228231A1 (en) | Validator with removable flash memory | |
| CA2529617C (fr) | Procede d'ecriture, de mise a jour et d'allocation memoire applique a l'ecriture de fichiers sur un support memoire tel qu'une carte a puce | |
| EP1997083A1 (fr) | Carte à puce configurable automatiquement et procédé de configuration d'une telle carte | |
| JP2004535637A (ja) | ソフトウェアモジュールの転送方法 | |
| WO2006088838A2 (fr) | Procedes de protection contre la copie d'un logiciel stocke dans une memoire portable | |
| WO2007100267A2 (fr) | Procédé, support, clé et système pour sécuriser des données et lire des données sécurisées | |
| CN112084468B (zh) | 一种多软件授权验证方法 | |
| JP2002182770A (ja) | 正規ユーザ認証機能付き記録媒体 | |
| US20030105970A1 (en) | Systems and methods for enforcing single computer use of software | |
| WO2006064314A1 (fr) | Systeme de securite permettant d'empecher la copie non autorisee de donnees numeriques | |
| US20230117696A1 (en) | Method and system for starting up or managing an offline control device | |
| RU2251752C2 (ru) | Карта полупроводниковой памяти и устройство считывания данных | |
| US7805764B1 (en) | Sequencing data blocks to provide hidden data on a recording medium | |
| CN111353181A (zh) | 一种硬件序列号存储方法 |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
| NENP | Non-entry into the national phase |
Ref country code: DE |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 07709264 Country of ref document: EP Kind code of ref document: A2 |