Secured distribution of software updates

摘要

In some embodiments, a system includes a signature server comprising a signature unit to receive an update to a software application. The signature server also includes a first machine-readable medium to store a mapping between an identification of the software application and an address of a location of a private key. The system includes a cryptographic device coupled to an external port of the signature server. The cryptographic device includes a second machine-readable medium to store the private key. The cryptographic device also includes a cryptographic unit to generate a signature of the update based on the private key.

主权项

1. A computer-implemented method comprising:
downloading manifest data for a software update into a client device, the manifest data including a manifest data signature, a software update storage location, and a software update signature; verifying the manifest data by generating a first hash across the manifest data using an updateable public key stored in a file directory of the client device and comparing the first hash to the manifest data signature; downloading the software update from the software update storage location to the client device after verifying the manifest data; validating the software update by generating a second hash across the software update using the updateable public key and comparing the second hash to the software update signature; storing the software update into a machine-readable medium of the client device; revalidating the software update, just prior to installation thereof, by regenerating the second hash across the software update using the updateable public key and comparing the second hash to the software update signature; installing, using one or more processors, the software update on the client device.