Abstract:

Nowadays, the software development model has transformed from independent development to collaborative development, while the selling pattern of software industry has turned into module based way from traditional whole software selling. The existing software protection techniques such as softdog and registration code can no longer meet these new requirements, and the problem of infringement has become more and more severe. Based on this, a software life cycle oriented authorization and protection system was designed. This system synthetically applied the UKey technology, authentication technology, digital signature technology, certificate chain technology and hardwarebased encryption technology. And especially, an authorization model which is customizable to software developers and the license file which takes modules as the basic authorization unit were adopted. The prototype system shows our design is functionally well and reasonable, the security requirements of software in all stages, from developing stage to sale and using, are provided.

Key words: software life cycle protection;authorization model;UKey technology;certificate chain;lease sale model