US20050265193A1

Movatterモバイル変換

Info

Publication number: US20050265193A1
Application number: US11/173,666
Authority: US
Inventors: Stephen Phillipo; Robert Ellison; Stuart Keeler
Original assignee: Individual
Current assignee: Individual
Priority date: 1999-11-19
Filing date: 2005-07-01
Publication date: 2005-12-01
Also published as: US20050246284A1; US7065506B1

Abstract

A technique to prevent illicit copying of a copy-protected CD-ROM into a computer-readable storage drive is presented. In accordance with the present invention, when an authentic copy-protected CD-ROM is inserted into a CD drive and the content of the copy-protected CD-ROM is installed onto a hard disk drive that is linked to the CD drive, the Central Processor Unit (CPU) executes the installer instructions residing in the CD-ROM to create a license file in the hard disk drive. For security reasons, the content of the CD-ROM (e.g., the executable file of the application) is encrypted. When the content of the CD-ROM is copied into the hard disk drive, it remains encrypted. The license file essentially acts as a timer to monitor a predetermined time interval that has been programmed into the license file. If a user attempts to launch the encrypted copied application residing in the hard drive at any time prior to the expiration of the predetermined time interval, the license file readily supplies the key code to enable a filter to decode the encrypted installed application thereby allowing the application to launch. At the expiration of the predetermined time interval, the license file withholds the key code therefore not allowing the installed application to be decrypted and successfully launched. The predetermined time interval can be reset by reinserting the copy-protected CD-ROM into the CD drive to reset the time interval.

Description

FIELD OF THE INVENTION

The invention generally relates to copy protection and more particularly to a method to prevent illicit copying of software from record carriers to computer-readable data storage drives.

BACKGROUND OF THE INVENTION

Despite its compact size, each Compact Disc (CD) in its many forms (e.g., CD-ROM, CD-R, CD-RW, CD-DA, CD-I, etc.) can be used to store enormous amounts of data (i.e., 650 MB) including audio, text, software codes, graphics, etc. In addition, CDs are subject to no mechanical wear and tear and are therefore very reliable. As a result, CDs have become the preferred portable data storage format in recent years. Indeed, software products (e.g., application software, video games, etc.) are currently distributed by software publishers almost exclusively on CD-ROM format. However, it is estimated that software and video game publishers lose billions of dollars worldwide to product piracy each year. While most CD-ROM software piracy losses are attributable to counterfeiting by professional pirates, with the availability of CD Recordable (CD-R) drives at an affordable price, the average consumers can now make perfect copies of CD-ROM originals for the price of a blank disc.

One effective solution to the problem of unauthorized (illicit) software copying is provided by Macrovision Corporation of Sunnyvale, Calif. through its C-dilla Subsidiary. This anti-copy solution involves encrypting the executable file of the application (i.e., CD-ROM's software content) according to a production key and embedding a digital signature corresponding to the production key onto the CD-ROM during manufacturing. The hidden digital signature can only be detected using special authentication software provided with the CD-ROM at boot-up. Upon detecting and authenticating the digital signature, information in the digital signature is used as a key to decrypt the encrypted executable file of the software content thereby allowing the application to launch. If the digital signature is not detected, the encrypted executable file of application cannot be decrypted for launch. The digital signature is designed so that it cannot be copied. In other words, when a copy protected CD-ROM is copied to another CD or to a computer-readable storage drive (e.g., computer hard drive), the digital signature cannot be transferred to the copied CD or storage drive thereby preventing the copied application from being launched. Hence, a copied CD is essentially useless.

Thus, a need exists for an improved method to discourage illicit copying of a copy-protected CD-ROM into a computer-readable data storage device without requiring the copy-protected CD-ROM to be inserted in the CD-ROM drive to successfully launch the copied application from the data storage device.

SUMMARY OF THE INVENTION

Accordingly, the present invention provides an improved method to discourage illicit copying of a copy-protected CD-ROM into a computer-readable data storage device without requiring the copy-protected CD-ROM to be inserted in the CD-ROM drive to successfully launch the copied application from the data storage device.

The present invention meets the above need with a method to discourage illicit copying from a digital record carrier to a computer-readable data storage device. As part of the method, the content of the digital record carrier is encrypted. Next, determination is made as to whether a predetermined time interval has lapsed since the digital record carrier was last inserted for use. If the predetermined time interval has not lapsed, the content of the digital record carrier that has been installed onto the computer-readable data storage device is decrypted into a random access memory thereby allowing the copied content to launch for use. Otherwise, if the predetermined time interval has lapsed, the content of the digital record carrier that has been installed onto the computer-readable data storage device is prevented from being decrypted thereby not allowing the copied content to launch for use. Under the present invention, re-inserting the digital record carrier resets the predetermined time interval.

All the features and advantages of the present invention will become apparent from the following detailed description of its preferred embodiment whose description should be taken in conjunction with the accompanying drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a diagram illustrating an exemplary CD-ROM100 that is copy-protected in accordance with the present invention.

FIG. 2 is a block diagram illustrating, as an example,computer system200 upon which the present invention may be practiced.

FIG. 3 is a chart illustrating the functions that the executed installer instructions110 perform when copy-protected CD-ROM100 is inserted intoCD drive209 for the first time.

FIG. 4 is a flow chart of the steps performed by license management system320.

FIG. 5 is a flow chart of the steps performed by executed filter instructions120.

DETAILED DESCRIPTION OF THE INVENTION

In the following detailed description of the present invention, numerous specific details are set forth in order to provide a thorough understanding of the present invention. However, it will be obvious to one skilled in the art that the present invention may be practiced without these specific details. In other instances well-known methods, procedures, components, and circuits have not been described in detail as not to unnecessarily obscure aspects of the present invention. Although the following description describes the present invention in the context of preventing illicit copying of the content of a CD-ROM to a hard disk drive, it should be clear to a person of ordinary skill in the art that the present invention can be used to prevent the illicit copying from any type of optical record carrier such as CD-Digital Audio (CD-DA), CD-Recordable (CD-R), CD-Rewritable (CD-RW), Digital Versatile Disc (DVD), etc. to any type of computer-readable data storage device including hard disk drives, tape drives, and others.

In accordance with the present invention, when an authentic copy-protected CD-ROM is first inserted into a CD drive, the Central Processor Unit (CPU) executes the installer instructions residing in the CD-ROM to automatically copy the encrypted application (i.e., encrypted main application software) into the hard disk drive and to install a license management system that is used to control license management and to detect the authentic copy-protected CD-ROM. For security reasons, the content of the CD-ROM (e.g., the executable file of the application and other relevant files are encrypted. Upon completing the installation phase, when the user attempts to launch the encrypted copied application residing in the hard drive at any time prior to the expiration of the predetermined time interval, the license management system readily supplies the key to enable a filter to decode the encrypted copied application thereby allowing the application to launch. Following the expiration of the predetermined time interval or if the inserted CD-ROM cannot be authenticated, the license management system withholds the key therefore not allowing the copied application to be decrypted and successfully launched. When prompted by the shell, the predetermined time interval can be reset by reinserting the copy-protected CD-ROM into the CD drive to reset the time interval.

In so doing, the present invention makes the CD drive available to the rights-owner (i.e., the CD-ROM owner) for other applications while the application copied from the copy-protected CD-ROM is running. The present invention also allows portable computer users to not having to carry all of their copy-protected CD-ROMs on the road. At the same time, by requiring reinsertion of the copy-protected CD-ROM periodically, the copy-protected CD-ROM is regularly required nearby thereby discouraging the illicit copying of a copy-protected CD-ROM into a hard drive of someone other than the rights-owner. This is because it is a major inconvenience of the illicit copier to keep borrowing the copy-protected CD-ROM from the rights-owner.

As an alternate embodiment, the key can be obtained through a remote transaction via the Internet, the telephone, email, fax, etc. In this embodiment, following the expiration of the predetermined time interval, the user can communicate with a known remote central depository, maintained by the software publisher or developer to obtain a key in exchange for some information (e.g., a password) to decrypt the copied application thereby allowing it to be launched for use. The alternate embodiment, which also allows the rights-owner to enjoy most if not all of the benefits provided by the present invention as discussed above, is desirable especially if the original CD-ROM is not available (e.g., misplace) or if a directly connected CD-ROM drive is temporarily unavailable.

Reference is now made toFIG. 1 illustrating an exemplary CD-ROM100 that is copy-protected in accordance with the present invention. In addition to an encrypted executable file of the application software product (not shown), copy-protected CD-ROM100 stores at least installer instructions110 (not shown) and filter instructions120 (not shown) that are needed to prevent illicit copying of CD-ROM100 into a hard disk drive. To further prevent illicit copying of CD-ROM100 to another CD, copy-protected CD-ROM100 may further include embedded digital signature130 (not shown) and authentication instructions140 (not shown). In the preferred embodiment, digital signature130 is added to the Glass Master with the software publisher's content (e.g., application) already in place using a Laser Beam Recorder (LBR) by a mastering facility or replicator using the Master Interface Software (MIS) developed by Doug Carson Associates (DCA). Using the glass master, a CD Replicator can mass-produce Silver Discs with digital signature130 and the encrypted content ready for use by the consumers. The aforementioned manufacturing steps are well known and should be obvious to a person of ordinary skill in the art.

Digital signature130 is hidden and can only be detected using executed authentication instructions140. Upon detecting and authenticating digital signature130, information in digital signature130 is used as a key to decrypt the encrypted executable file of the software content thereby allowing the application to launch. If digital signature130 is not detected, the encrypted executable file of application cannot be decrypted for launch. Digital signature130 is designed so that it cannot be copied. In other words, when copy protected CD-ROM100 is copied to another CD or to a computer-readable storage drive (e.g., computer hard drive), the digital signature cannot be transferred to the copied CD or storage drive thereby preventing the encrypted copied application from being launched. In accordance with the present invention, a license file storing the decryption key/code derived from digital signature130 is used to provide the decryption key/code to launch a copied application in a hard disk drive. Such license file and other components relevant to the present invention are discussed in greater detail below.

Referring now toFIG. 2 illustrating a block diagram ofexemplary computer system200 upon which the present invention may be practiced. It is to be appreciated thatcomputer system200 is exemplary only and that the present invention can operate within a number of different computer systems and computerized devices including general-purpose computer systems and others. In the following discussions of the present invention, certain processes and steps are realized as a series of instructions (e.g., software program) that reside within computer readable storage devices and memory units ofsystem200 and executed byprocessor201.

In general,computer system200 upon which the present invention is practiced comprises address/data bus212 for conveying information and instructions,central processor201 coupled withbus212 for processing information and instructions, a random access memory (RAM)202 for storing digital information and instructions, a read only memory (ROM)203 for storing information and instructions of a more permanent nature. In addition,computer system200 further includehard disk drive204 for storing vast amounts of data such as the data copied from a CD-ROM, aCD drive209 for reading copy-protected CD-ROM100 in accordance with the present invention, I/O interface208 for interfacing with peripheral devices (e.g., computer network, modem, etc.). Moreover,computer system200 may includedisplay device205 for displaying information to a computer user, an alphanumeric input device206 (e.g., keyboard), and a cursor control device207 (e.g., mouse, trackball, lightpen, etc.) for communicating user input information and command selections.

Reference is now made toFIG. 3 illustrating the functions that the executed installer instructions110 perform when copy-protected CD-ROM100 is inserted into CD drive209 for the first time. Installer instructions110 may be an executable file. When installer instructions110 are executed bycentral processor201, the encrypted application (i.e., encrypted main application software) is automatically copied intohard disk drive204. The executed installer instructions110 also install license management system320 onto thehard disk drive204. In general, license management system320 is designed to control license management and to detect an authentic copy-protected CD-ROM. License management system320 may be an executable file that is executed bycentral processor201 whenever a user attempts to launch the copy-protected application software. The implementation of installer instructions110 to carry out the aforementioned functions using system facilities available oncomputer system200 should be obvious to a person of ordinary skill in the art. Hence, specific detail of such implementation is not further discussed for brevity and simplicity sake.

Referring now toFIG. 4 illustrating a flow diagram of the license management system320. When a user attempts to launch the copy-protected application software,central processor201 executes shell program330 to determine whether a correct copy-protected CD-ROM (e.g., a CD-ROM whose identification number matches the application software content in the CD-ROM) is in CD drive209 (step410). If a correct copy-protected CD-ROM cannot be ascertained, shell program450 (not shown) prompts for the correct CD-ROM (step413) before continues the monitoring. Otherwise, if a correct copy-protected CD-ROM is ascertained, executed shell program450 determines whether a valid license file460 (not shown) has already been created for CD-ROM100 carrying the application software (step415). If license file-420 has already existed, executed shell program450 updates the information in license file460 (step420). Otherwise, if license file460 has not been created, executed shell program450 creates a new license file460 in hard disk drive204 (step425).

License file

420 is essentially a data file that includes the value of the predetermined time interval, the time and date when copy-protected CD-ROM100 was last inserted into CD-ROM drive209, the present time and date, the identity of the software product in copy-protected CD-ROM100, the software product's protection information, and others. When CD-ROM100 is first inserted intohard disk drive204, the time and date at that moment is recorded inlicense file420 as the time and date when CD-ROM100 was last inserted. At each subsequent insertion of CD-ROM100, the installer instructions update the time and date when CD-ROM100 was last inserted. In the preferred embodiment, the present time and date is updated every 20 minutes. Accordingly, using the stored information on the time and date when CD-ROM100 was last inserted and the present time and date, a determination of whether the predetermined time interval has been reached can be made (step425). Hence, the main function of the license file is to monitor the time duration since copy-protected CD-ROM100 was last inserted into CD-ROM drive209.

For security reason, the license file is also encrypted to prevent unauthorized access to the predetermined time interval and/or the present time and date. The exact encryption method employed is not important as long as its identity is kept confidential from hackers for security reasons. This is so because access to the aforementioned information means that the information may be altered to defeat the copy-protected aspect of the present invention. For example, the predetermined time interval, the time and date when CD-ROM100 was last inserted, and/or the present time and date can be changed to fool the system into thinking that the time interval has not expired. The identity of the software product may be a code name or number and is used to ensure that the proper CD-ROM is inserted before access to the license file is allowed for alteration. This prevents a hacker to get access to the license file by using a different copy-protected CD-ROM. In the preferred embodiment, product protection information is a decryption code/key used in decrypting the application. Such decryption code/key is derived from digital signature130 that was embedded in CD-ROM100 during manufacturing. When digital signature130 is detected by authentication instruction140, which may be an executable file, during the detection and authentication process, it is passed to shell program450 to record into the license file as the decryption code/key. In an alternate embodiment, the code/key can be obtained through a remote transaction via the Internet, the telephone, email, fax, etc. In this alternate embodiment, following the expiration of the predetermined time interval, the user can communicate with a known remote central depository, maintained by the software publisher or developer to obtain a code/key in exchange for some information (e.g., a password) or a license fee to use in decrypting the copied application thereby allowing it to be launched for use. Such remote central depository may be a key computer server connecting to the World Wide Web if the transaction is an Internet transaction. Such remote central depository may also be a data base operated by a service operator if the transaction is a manual one that involves the use of telephone, email, fax, etc. The alternate embodiment, which also allows the rights-owner to enjoy most if not all of the benefits provided by the present invention as discussed above, is desirable especially if the original CD-ROM is misplaced. The implementation of shell program450 to carry out the aforementioned functions using system facilities available oncomputer system200 should be obvious to a person of ordinary skill in the art. Hence, specific detail of such implementation is not further discussed for brevity and simplicity sake.

The executable file of the software application is encrypted prior to manufacturing of CD-ROM100. In so doing, the copied application cannot be launched from the hard disk drive unless a valid license file is present in order to allow the application to be decrypted. In accordance with the present invention, decryption is allowed only if the set time interval has not expired. In the preferred embodiment, decryption is carried out using filter instructions120 which may be an executable file. In the preferred embodiment, encrypted files are decrypted by executing filter instructions120 to perform as an operating system filter into RAM202 (not hard disk drive204). As such, the decryption is performed on in real time. In other words, the parts of an encrypted file are decrypted as the operating system requests it. Filter instructions120 are enabled to decrypt only if the set time interval has not expired. Preferably, filter instructions120 are enabled in response to the decryption code/key that is provided by the license file. The license management system makes available the decryption code/key only if the set predetermined time interval is not yet expired (step430). Otherwise, if the time interval has already expired, the license management system does not make available the decryption code/key to the filter but rather prompts the user to re-insert copy-protected CD-ROM100 by going back to step413. Filter instructions120 may be installed from CD-ROM100 ontohard disk drive204. When enabled by the decryption code/key and executed bycentral processor201, filter instructions120 decrypt the encrypted executable file for the application.

The preferred embodiment of the present invention, a technique to discourage illicit copying of a copy-protected CD-ROM into a computer-readable data storage device without requiring the copy-protected CD-ROM to be inserted in the CD-ROM drive to successfully launch the installed application from the storage drive, is thus described. While the present invention has been described in particular embodiments, the present invention should not be construed as limited by such embodiments, but rather construed according to the below claims.

Claims

1-18. (canceled)

19. A method to discourage illicit copying from a digital record carrier playable upon a drive to a computer-readable data storage device, wherein at least a portion of a content of the digital record carrier is encrypted, the method comprising:

copying the content of the digital record carrier to the computer-readable data storage device upon insertion of the digital record carrier into the drive;

monitoring whether a predetermined time interval has lapsed since the digital record carrier was inserted into the drive;

if the predetermined time interval has not lapsed, decrypting the content of the digital record carrier that has been copied thereby allowing the copied content to launch for use with the digital record carrier not inserted in the drive; and

if the predetermined time interval has lapsed, preventing the content of the digital record carrier that has been copied from being decrypted thereby not allowing the copied content to launch for use.

20. The method ofclaim 19, further comprising re-inserting the digital record carrier into the drive to reset the predetermined time interval.

21. The method ofclaim 19, wherein a digital signature is embedded into the digital record carrier and wherein the digital signature is not transferable during the copying of the digital record carrier to another digital record carrier or to the computer-readable data storage device, and further comprising:

if the digital signature is detected and authenticated, decrypting the content of the digital record carrier thereby allowing the content of the digital record carrier to be launched for use; and

if the digital signature is not detected and authenticated, preventing the content of the digital record carrier from being decrypted thereby not allowing the content of the digital record carrier to be launched for use.

22. The method ofclaim 20, wherein the monitoring includes:

creating a file for storing a predetermined time interval value, time information on when the digital record carrier was inserted, current time information, a decryption code or key, and identification information for the digital record carrier;

determining whether the predetermined time interval has lapsed;

providing the decryption code or key if the predetermined time interval has not lapsed; and

withholding the decryption code or key if the predetermined time interval has lapsed.

23. The method ofclaim 22, wherein the file is encrypted.

24. The method ofclaim 23, wherein the decryption code or key is obtained from the file.

25. The method ofclaim 23, wherein the decryption code or key is obtained from a remote depository.

26. The method ofclaim 23, wherein the current time information is updated every 20 minutes.

27. The method ofclaim 23, wherein the decrypting includes using the decryption code or key when made available to enable a filter to decrypt the content of the digital record carrier that has been installed onto the computer-readable data storage device into a random access memory.

28. The method ofclaim 19, wherein the digital record carrier is a CD or DVD.

30. The digital record carrier ofclaim 29, wherein the predetermined time interval is reset by re-inserting the digital record carrier into the drive.

31. The digital record carrier ofclaim 30, wherein the monitoring includes installing a file in the computer-readable data storage device, the file storing a predetermined time interval value, time information on when the digital record carrier was inserted, current time information, a decryption code or key, and identification information for the digital record carrier, the file determining whether the predetermined time interval has lapsed, and if the predetermined time interval has not lapsed, the file providing the decryption code or key, and if the predetermined time interval has lapsed, the file withholding the decryption code or key.

32. The digital record carrier ofclaim 31, wherein the file is encrypted.

33. The digital record carrier ofclaim 32, wherein the decryption code or key is obtained from the file.

34. The digital record carrier ofclaim 32, wherein the decryption code or key is obtained from a remote depository.

35. The digital record carrier ofclaim 32, wherein the current time information is updated every 20 minutes.

36. The digital record carrier ofclaim 32, wherein the decrypting includes using the decryption code or key when made available to enable a filter to decrypt the content of the digital record carrier that has been installed onto the computer-readable data storage device into a random access memory.

38. The digital record carrier ofclaim 29, wherein the digital record carrier is a CD or DVD.

39. A method to inhibit copying from a digital record carrier playable upon a drive to a computer-readable data storage device, wherein at least a portion of a content of the digital record carrier is encrypted, the method comprising:

if the predetermined time interval has not lapsed, decrypting the content of the digital record carrier that has been copied thereby allowing use of the installed content with the digital record carrier not inserted in the drive; and

if the predetermined time interval has lapsed, preventing the content of the digital record carrier that has been copied from being decrypted thereby not allowing use of the content.

40. The method ofclaim 39, further comprising re-inserting the digital record carrier into the drive to reset the predetermined time interval.

41. The method ofclaim 39, wherein a digital signature is embedded into the digital record carrier wherein the digital signature is not transferable during copying of the digital record carrier to another digital record carrier or to the computer-readable data storage device, and further comprising:

42. The method ofclaim 40, wherein the monitoring includes:

creating a file for storing a predetermined time interval value, time information on when the digital record carrier was inserted into the drive, current time information, a decryption code or key, and identification information for the digital record carrier;

determining whether the predetermined time interval has lapsed;

43. The method ofclaim 41, wherein the file is encrypted.

44. The method ofclaim 42, wherein the decryption code or key is obtained from the file.

45. The method ofclaim 43, wherein the current time information is updated every 20 minutes.

46. The method ofclaim 43, wherein the decryption code or key is obtained from a remote depository.

47. The method ofclaim 43, wherein the decrypting includes using the decryption code or key when made available to enable a filter to decrypt the content of the digital record carrier that has been installed onto the computer-readable data storage device into a random access memory.

48. The method ofclaim 39, wherein the digital record carried is a CD or DVD.

50. The digital record carrier ofclaim 49, wherein the predetermined time interval is reset by re-inserting the digital record carrier into the drive.

51. The digital record carrier ofclaim 50, wherein the instructions that perform the monitoring install a file in the computer-readable data storage device, the file storing a predetermined time interval value, time information on when the digital record carrier was inserted into the drive, current time information, a decryption code or key, and identification information for the digital record carrier, the file determining whether the predetermined time interval has lapsed, and if the predetermined time interval has not lapsed, the file providing the decryption code or key, and if the predetermined time interval has lapsed, the file withholding the decryption code or key.

52. The digital record carrier ofclaim 51, wherein the file is encrypted.

53. The digital record carrier ofclaim 52, wherein the decryption code or key is obtained from the file.

54. The digital record carrier ofclaim 52, wherein the decryption code or key is obtained from a remote depository.

55. The digital record carrier ofclaim 52, wherein the current time information is updated every 20 minutes.

56. The digital record carrier ofclaim 52, wherein decrypting includes using the decryption code or key when made available to enable a filter to decrypt the content of the digital record carrier that has been installed onto the computer-readable data storage device into a random access memory.

57. The digital record carrier ofclaim 49, having a digital signature embedded into the digital record carrier wherein the digital signature is not transferable during the copying of the digital record carrier to another digital record carrier or to the computer-readable data storage device, wherein if the digital signature is detected and authenticated, the instructions, when executed by the central processor, include decrypting the content of the digital record carrier thereby allowing the content of the digital record carrier to be launched for use, if the digital signature is not detected and authenticated, the instructions, when executed by the central processor, preventing the content of the digital record carrier from being decrypted thereby not allowing the content of the digital record carrier to be launched for use.

58. The digital record carrier ofclaim 49, wherein the digital record carrier is a CD or DVD.