A method and system for remotely maintaining data that is critical for license enforcement. The data consists of named values, is kept on a user's trusted platform, and encrypted with the use of keys that are stored in two special registers. One register is exclusively readable by a trusted program, and holds a long-term secret. Another register is exclusively writable, and changed often, so that old backups of the named values can only be read if suitable permissions are obtained. It uses a hierarchy of servers that act as vendors and have contractual obligations. Vendor certificates specify that certain named values are stored on users' trusted platforms, but owned and controlled by servers (with the cooperation of the users).