A certificate for a target device includes encrypted system attributes that are verified against attributes of the target device prior to software usage. A certificate server securely obtains system attributes from the target system and generates a certificate with encrypted components including some system attributes. The certificate is stored on the target device and software installation/execution is made dependent on validation of the certificate. An encrypted system fingerprint in the certificate is decrypted by the software at the target device and compared with locally obtained system attributes to verify authorization for software usage on the target device. The certificate represents an easy to use paradigm for anti-piracy protection of software.