Device notarization

摘要

Methods and systems for device notarization and verification are provided. In one implementation, various integrity values are concatenated to generate a concatenated value that is used to generate a transaction data signature (TDS). In one implementation, the concatenated value is a concatenation of a device value, an application value, an application encryption (AE) module value, and an authentication generation (AG) module value. The TDS or notarization code is generated by applying the concatenated value to the AG module. In one implementation, subsequent use of the application on the device involves generation of a new TDS, which is compared against the notarization code to determine whether use of the application on the device is authorized. In one implementation, the AE module and the AG module are seeded with a seed value which includes a device value, an application value, a user specific value, and a pseudo random number.

主权项

1. A method comprising:
generating a first concatenated value at a client device, during notarization of the client device to use an application, wherein the generating comprises concatenating a first device tamper (DT) value and a first application tamper (AT) value; and generating a first transaction data signature (TDS) at the client device, wherein the generating of the first TDS comprises applying the first concatenated value to an authentication generation (AG) module, wherein the first DT value is generated by running a DT check on the client device and the first AT value is generated by running an AT check on the application, and the first DT value and the first AT value each comprise a hash value.