WO1999063697A2 - Programmgesteuerte vorrichtung - Google Patents
Programmgesteuerte vorrichtung Download PDFInfo
- Publication number
- WO1999063697A2 WO1999063697A2 PCT/DE1999/001489 DE9901489W WO9963697A2 WO 1999063697 A2 WO1999063697 A2 WO 1999063697A2 DE 9901489 W DE9901489 W DE 9901489W WO 9963697 A2 WO9963697 A2 WO 9963697A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- program
- controlled device
- controlled
- user data
- individual user
- Prior art date
Links
- 230000006870 function Effects 0.000 claims description 2
- 238000009434 installation Methods 0.000 abstract 1
- 230000005540 biological transmission Effects 0.000 description 7
- 230000006978 adaptation Effects 0.000 description 4
- 230000008878 coupling Effects 0.000 description 4
- 238000010168 coupling process Methods 0.000 description 4
- 238000005859 coupling reaction Methods 0.000 description 4
- 238000012423 maintenance Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 238000006243 chemical reaction Methods 0.000 description 2
- 238000003745 diagnosis Methods 0.000 description 2
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
- G06F21/123—Restricting unauthorised execution of programs by using dedicated hardware, e.g. dongles, smart cards, cryptographic processors, global positioning systems [GPS] devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/007—Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
Definitions
- the present invention relates generally to a program-controlled device according to the preamble of claim 1, in particular the present invention relates to a data processing or telecommunications device which is controlled by software.
- Program-controlled devices or systems include system hardware to perform or perform certain functions of the program-controlled device.
- the system hardware is supplemented by system software which provides operating data for the operation of the program-controlled device and thus represents the basis for the control of the system hardware.
- copy protection in the form of the so-called dongle concept is used to ensure that the system software is only used together with the system hardware for which the user has also acquired licenses. In this way, an unauthorized copying of the system software from one individual system hardware to another system hardware is to be prevented.
- the system checks when booting up whether the dongle is set or inserted in the system. If this is not the case, the system cannot be operated.
- the problem with this concept is the fact that the dongle is removable and can therefore be placed in another system for which no license has actually been acquired, so that the togetherness check of the hardware and software of a system is artificially falsified can be. There is therefore a need for an improved concept which ensures that the systems -Soft- would only be used to the extent that it is also covered by licenses.
- the present invention is therefore based on the object of specifying an improved program-controlled device which reliably prevents unauthorized copying of the system software and / or unauthorized use of the system software.
- the program-controlled device is used together with storage means, for example in the form of a crypto chip, which store individual user data which determine and define the possible extent of use of the system software for the respective user.
- storage means for example in the form of a crypto chip, which store individual user data which determine and define the possible extent of use of the system software for the respective user.
- this user data is read out and made the basis for the control of the system hardware in such a way that the system hardware is only controlled by the system software within the scope of use defined by the individual user data. In this way, only predefined features or a certain number of applications of the system software could be released for certain users.
- the storage means are implemented in the form of a crypto chip, this can be installed, for example, in the multi-layer backplane of the central unit of the device, so that it is permanently connected locally and particularly to the central unit, ie the system software is difficult to access.
- the program Controlled device for example, customer-specific keys or algorithms are programmed in this chip, so that the system software supplied can only run to the extent defined by the programmed keys / algorithms.
- the system software or the associated database of the program-controlled device can preferably be copied for backup purposes, but in this way it cannot run on other systems or devices without the crypto chip.
- an external chip card reader can be connected for this purpose, for example, so that the entire system software is again accessible to an authorized person when a corresponding chip card is inserted. It is also conceivable to use other means of identification for diagnostic / maintenance purposes, with the aid of which the entry of a specific code which authorizes diagnosis / maintenance can be checked.
- the present invention can be applied to various types of program-controlled devices, a preferred field of application being that of data processing or telecommunication devices.
- the present invention can be used in telecommunications systems which are used in private networks to set up communication connections between subscribers assigned to the telecommunications system.
- FIG. 1 shows a simplified block diagram of a program-controlled device in the form of a program-controlled telecommunication system
- Figure 2 shows a simplified block diagram of the in
- FIG. 1 shown control device according to the present invention.
- FIG. 1 shows a simplified block diagram of a telecommunication system 1, as is used, for example, in private communication networks.
- the telecommunication system 1 is used to mediate voice, image, text and data connections between the subscribers assigned to the telecommunication system 1.
- the telecommunications system 1 preferably works digitally, i. H. digital information transmission takes place within the telecommunications system 1.
- the telecommunications system 1 comprises a digital switching network 4, which represents the actual switching element of the telecommunications system 1.
- the coupling arrangement 4 enables a so-called room change from a transmission line connected to the telecommunication system 1 to another transmission line and a so-called time change from one transmission channel to another transmission channel.
- the digital switching arrangement 4 is generally divided into individual switching network modules or switching stages.
- Different subscribers and transmission lines are assigned to the telecommunication system 1 and are brought to the digital coupling arrangement 4 via line adaptations 2a-2c.
- the line adaptions 2a-2c contain an analog / digital conversion in the coming direction and a digital / analog conversion in the outgoing direction Direction instead.
- the line adaptations 2a-2c can be connected to the digital coupling arrangement 4, for example, via PCM transmission lines, which have, for example, 64 channels.
- PCM transmission lines which have, for example, 64 channels.
- multiple subscriber lines 3 are shown in FIG. 1 only for line adaptation 2a, it being possible for these subscriber lines to be assigned to both analog and digital subscriber terminals.
- the line adaptations 2b and 2c are each connected to a large number of subscriber lines 3.
- the telecommunications system 1 is program-controlled. This takes place with the aid of a controller 5, which records the connection requests of the participants in the telecommunication system 1, carries out the route setting and the entire telecommunication system 1, in particular the hardware, i. H. the coupling arrangement 4, the telecommunications system 1 controls.
- control 5 shown in FIG. 1
- the structure of the control 5 shown in FIG. 1 will be explained in more detail below with reference to FIG. 2.
- the control 5 comprises, as a central component, a central control unit (CPU) 6 in the form of a central processor which is used to control the system hardware of the telecommunications system 1.
- the central control unit 6 is program-controlled and is controlled for this purpose by system software 7, which provides a specific database with operating data for the operation of the system hardware.
- system software 7 which provides a specific database with operating data for the operation of the system hardware.
- the system hardware or the telecommunications system 1 can thus be provided for a large number of performance features LM # 1 - LM # n, which are defined by the system software 7 or its database, in particular by the system software 7 for each Performance feature the required operating parameters are specified. That is, With reference to FIG.
- the first feature LM # 1 can be implemented, for example, with three different operating parameters 1-A to 1-C, while for the second feature LM # 2 only two different operating parameters 2-A and - 2-B are possible.
- the telecommunication system 1 is equipped in this way by the system software 7 for realizing n performance features.
- These features can be generally known service features for digital telephone networks, such as. B. "Call waiting”, “call forwarding”, “call forwarding”, “display of the caller's number” or “charge display” etc.
- the system software 7 and the corresponding database thus provide all the operating information required for the operation of the telecommunications system 1 to the central control unit 6, so that the telecommunications system 1 and its system hardware can be program-controlled.
- the system software 7 or the associated database can be copied by the respective user for backup purposes.
- the central control unit 6 of the telecommunications system 1 is coupled to an additional memory 8, which contains individual user data.
- this memory 8 can be a crypto chip, as is generally used in connection with chip cards.
- the memory 8 is permanently coupled locally to the central control unit 6 and installed, for example, in the multilayer rear wall or backplane of the central control unit 6, so that the memory 8 cannot be separated from the central control unit 6.
- the aforementioned individual user data are programmed, ie stored, which, for example, comprise customer-specific keys or algorithms, and the one for the respective Define possible scope of use of the system software or the telecommunication system for the user.
- the memory 8 is fixed, i.e. H. not removable, coupled with the system software or the central control unit 6, self-identification of the system hardware is possible with the aid of the memory 8 or the information stored therein, so that a clear 1: 1 assignment between the System software and the system hardware of the telecommunications system is given and it is ensured that the
- the individual user data stored in the memory 8 include, in particular, information that defines the scope of use of the system software 7 that is possible for the respective user.
- the user data stored in the memory 8 can thus determine which of the features offered by the telecommunication system or the system software 7 are accessible to the respective user and how many different applications are available through the license assigned to the memory or the crypto chip 8 are covered.
- the LM # 3 feature is only accessible to the user with the 3-B operating parameter. In this way it is ensured that the system software 7 supplied with the system hardware is only available in the version of the volume previously ordered can be executed by the respective user.
- the central control unit 6 can be coupled to an interface 9 to which, for example, an external chip card reader can be connected, so that an authorized person can identify himself with a special chip card to the telecommunication system or the central control unit 6 and the System 8 can remove any restrictions imposed by the memory 8.
- an external chip card reader can be connected to an interface 9 to which, for example, an external chip card reader can be connected, so that an authorized person can identify himself with a special chip card to the telecommunication system or the central control unit 6 and the System 8 can remove any restrictions imposed by the memory 8.
- the use of other identification means is also possible, which enables identification of a person authorized to access the entire system software 7 or its entire database.
- a keyboard input can be provided, according to which the restrictions of the memory 8 are lifted when an appropriate access code is entered and the authorized person can access the entire system software 7.
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Technology Law (AREA)
- Multimedia (AREA)
- Remote Sensing (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Radar, Positioning & Navigation (AREA)
- Telephonic Communication Services (AREA)
- Communication Control (AREA)
Abstract
Description
Claims
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP99936269A EP1082647A2 (de) | 1998-06-03 | 1999-05-18 | Programmgesteuerte vorrichtung |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE1998124814 DE19824814C2 (de) | 1998-06-03 | 1998-06-03 | Einrichtung zur Ermittlung von freizugebenden Funktionen in einer Telekommunikationsanlage |
DE19824814.8 | 1998-06-03 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO1999063697A2 true WO1999063697A2 (de) | 1999-12-09 |
WO1999063697A3 WO1999063697A3 (de) | 2000-01-27 |
Family
ID=7869788
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/DE1999/001489 WO1999063697A2 (de) | 1998-06-03 | 1999-05-18 | Programmgesteuerte vorrichtung |
Country Status (3)
Country | Link |
---|---|
EP (1) | EP1082647A2 (de) |
DE (1) | DE19824814C2 (de) |
WO (1) | WO1999063697A2 (de) |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE10023818A1 (de) * | 2000-05-15 | 2001-11-22 | Siemens Ag | Lizenzmanager |
DE10260884A1 (de) * | 2002-12-23 | 2004-07-29 | Grundig Aktiengesellschaft | Gerät der Unterhaltungselektronik und Verfahren für den Betrieb des Geräts der Unterhaltungselektronik |
DE10353499A1 (de) * | 2003-11-11 | 2005-06-16 | Siemens Ag | Verfahren zum Ändern der Leistungsmerkmale einer von einer Systemsoftware gesteuerten Vorrichtung |
DE102006018039B4 (de) * | 2006-04-11 | 2010-11-25 | Michael Letterer | Verfahren zum Ausführen eines Programmcodes |
US10372104B2 (en) | 2015-02-27 | 2019-08-06 | Rockwell Automation Technologies, Inc. | Industrial automation control system content protection |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE3507744A1 (de) * | 1985-03-05 | 1986-09-11 | Neumann, Hans-Günter, Dr., 5047 Wesseling | Verfahren zum schutz von datenbanken und/oder rechenanlagen der elektronischen datenverarbeitung und/oder datentechnik vor dem zugriff unberechtigter |
EP0768601A1 (de) * | 1995-04-27 | 1997-04-16 | Casio Computer Company Limited | Gerät für die ausführung eines verschlüsselten progamms |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0557566B1 (de) * | 1992-02-28 | 1996-04-17 | Siemens Aktiengesellschaft | Verfahren zur hierarchisch administrierbaren kennungsorientierten Freigabesteuerung für bedieneraufgabenbezogene Zugriffsanweisungen auf eine Datenbasis einer programmgesteuerten Kommunikationsanlage |
CA2073495C (en) * | 1992-07-08 | 1999-01-12 | Michael Wright | Option selection and control |
EP0787328B1 (de) * | 1995-08-11 | 2002-10-23 | International Business Machines Corporation | Verfahren zum überprüfen der betriebsanordnung eines rechnersystems |
-
1998
- 1998-06-03 DE DE1998124814 patent/DE19824814C2/de not_active Expired - Fee Related
-
1999
- 1999-05-18 EP EP99936269A patent/EP1082647A2/de not_active Withdrawn
- 1999-05-18 WO PCT/DE1999/001489 patent/WO1999063697A2/de not_active Application Discontinuation
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE3507744A1 (de) * | 1985-03-05 | 1986-09-11 | Neumann, Hans-Günter, Dr., 5047 Wesseling | Verfahren zum schutz von datenbanken und/oder rechenanlagen der elektronischen datenverarbeitung und/oder datentechnik vor dem zugriff unberechtigter |
EP0768601A1 (de) * | 1995-04-27 | 1997-04-16 | Casio Computer Company Limited | Gerät für die ausführung eines verschlüsselten progamms |
Also Published As
Publication number | Publication date |
---|---|
DE19824814A1 (de) | 1999-12-09 |
EP1082647A2 (de) | 2001-03-14 |
WO1999063697A3 (de) | 2000-01-27 |
DE19824814C2 (de) | 2000-06-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2691940B1 (de) | Verwaltung von zugriffsrechten auf betriebs- und/oder steuerungsdaten von gebäuden oder gebäudekomplexen | |
EP0782350B1 (de) | Verfahren zum Aktivieren und Ausführen von gesicherten Funktionen in einem Kommunikationssystem | |
EP0557566B1 (de) | Verfahren zur hierarchisch administrierbaren kennungsorientierten Freigabesteuerung für bedieneraufgabenbezogene Zugriffsanweisungen auf eine Datenbasis einer programmgesteuerten Kommunikationsanlage | |
EP0532102B1 (de) | System zur Kontrolle des Zugriffs auf die Daten eines Datengerätes | |
EP1723815B1 (de) | Synchronisation von daten in zwei oder mehr teilnehmerkarten zum betreiben eines mobilen endgeräts | |
WO1999063697A2 (de) | Programmgesteuerte vorrichtung | |
DE102005015792A1 (de) | Diagnosesystem mit Identifikationsanzeigeeinrichtung | |
DE19533209C2 (de) | Vorrichtung zur Zuordnung der Benutzer in einem Computer-Netzwerk | |
DE60023978T2 (de) | Verfahren und System in einem Fernsprechvermittlungssystem | |
WO2000057597A2 (de) | Verfahren zur prüfung der authentität einer manager applikation in einem telekommunikations management netz bediensystem durch ein netzelement sowie ein dafür geeignetes netzelement | |
EP1521395A1 (de) | Verfahren zur Lizensierung und/oder Zugangsautorisierung für Softwaremodule in einer Vermittlungseinrichtung | |
DE19548296C2 (de) | Bidirektionaler Datenaustausch (Protokoll) zwischen einer TK-Anlage und einer Endeinrichtung | |
DE19755012A1 (de) | Verfahren zur Verwaltung teilnehmerindividueller Daten eines Telekommunikationsendgerätes | |
DE60011341T2 (de) | Verfahren und System zur Übertragung von Informationen in einem Fernsprechvermittlungssystem | |
DE60300964T2 (de) | Generierung nutzerspezifischer Einstellungsdaten | |
DE3214657C2 (de) | Einrichtung für die Sprach- und/oder Datenvermittlung und -übertragung | |
DE10021550A1 (de) | Netzweite Endkundenadministration über Administrationstechnik des Betreibers | |
DE2744302C3 (de) | Schaltunganordnung zur Beschränkung der Verkehrsmöglichkeit bei Externverbindungen in einer Fernmelde-, insbesondere Fernsprechnebenstellenanlage | |
DE4323847C1 (de) | Verfahren zur Fernabfrage einer Zugangsberechtigung für eine Teilnehmereinrichtung | |
EP0460403B1 (de) | Verfahren für Datenübertragungen in Kommunikations-Vermittlungsanlagen | |
DE2816093C2 (de) | Verfahren zur gesicherten Änderung von Kunden- und Programmdaten in Fernmelde-, insbesondere Fernsprechanlagen von einer zentralen Verwaltungsstelle aus | |
EP1065867B1 (de) | Verfahren zum Konfigurieren von Benutzerrechten für eine Kommunikationsanlage | |
DE3743956A1 (de) | Verfahren zur initiierung von vermittels eines digitalen kommunikationssystems steuerbaren kommunikationsverbindungen durch eine daran angeschlossene externe rechneranlage | |
DE10254620A1 (de) | Mehrfachregistrierung in Telefonsystemen | |
DE3445627A1 (de) | Mehrrechnersystem |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A2 Designated state(s): US |
|
AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE |
|
AK | Designated states |
Kind code of ref document: A3 Designated state(s): US |
|
AL | Designated countries for regional patents |
Kind code of ref document: A3 Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
WWE | Wipo information: entry into national phase |
Ref document number: 1999936269 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 09701693 Country of ref document: US |
|
WWP | Wipo information: published in national office |
Ref document number: 1999936269 Country of ref document: EP |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: 1999936269 Country of ref document: EP |