Re: How to Prevent reverse engineering .NET

From: "Stephany Young" <noone@localhost>
Date: Sun, 3 Apr 2005 14:32:47 +1200

Adding to Jon's comments:

'Prevention' is a subjection term.

Putting special locks on the doors and windows of your house will discourage
a reasonably large percentage of burglars, but a determined burglar will get
in if he really wants to.

Its' a matter of the 80/20 rule however I feel that with obfuscated code it
would be more like 99/1.

While security is important, overdoing it can easily lead to rendering the
whole thing unusable.

"Jon Skeet [C# MVP]" <skeet@xxxxxxxxx> wrote in message
news:MPG.1cb7ab8c9751179998bf20@xxxxxxxxxxxxxxxxxxxxxxx
> Cowboy (Gregory A. Beamer) - MVP <NoSpamMgbworld@xxxxxxxxxxxxxxxxxx>
> wrote:
>> The other solution is to use one of the frameworks that encrypts the
>> IL, which means you incur overhead for decrypting before running. An
>> even better solution for code safey, but not often worth the hit.
>
> And of course if the code is able to decrypt the IL, so can a suitably
> dedicated cracker. It's really just security through obscurity unless
> you've got an actual *secret* key, and if the code has to be able to
> run without external resources, it can't really be secret.
>
> --
> Jon Skeet - <skeet@xxxxxxxxx>
> http://www.pobox.com/~skeet
> If replying to the group, please do not mail me too

.

Follow-Ups:
- Re: How to Prevent reverse engineering .NET
  - From: Sean Hederman

References:
- How to Prevent reverse engineering .NET
  - From: sudhakar
- Re: How to Prevent reverse engineering .NET
  - From: Frank Eller
- Re: How to Prevent reverse engineering .NET
  - From: Cowboy (Gregory A. Beamer) - MVP
- Re: How to Prevent reverse engineering .NET
  - From: Jon Skeet [C# MVP]

Prev by Date: Re: How to learn amount of memory used by the process at the current t
Next by Date: Inherit HttpWebRequest
Previous by thread: Re: How to Prevent reverse engineering .NET
Next by thread: Re: How to Prevent reverse engineering .NET
Index(es):
- Date
- Thread

Relevant Pages

Re: National Security Backdoor in telnetd - all versions.
... >>against the Secret Service for their violations of civil rights. ... encryption techniques to protect critical resources. ... plants have absolutely horrid security resulting from these stupidities. ... Of course I doubt you have an NDA with the government - so ...
(comp.os.linux.security)
Re: Suggested killfile rules for recent attack
... "Secret Pentagon Intelligence Unit is Disclosed" ... It is suspected that the secret group was used to get around Congressional ... The National Security Agency will even attack freedom of the press: ...
(sci.crypt)
Re: Bushs crap
... 2006 -- Even Bush's crap is classified top secret. ... to our Austrian sources, Austrian newspapers are currently abuzz with ... Although the heavy-handed Gestapo-like security measures meted out to ... Syrian President Hafez Assad when he visited Amman, ...
(misc.survivalism)
Re: z/OS 1.9 RACFDRV job converted to Top Secret
... There is a Top Secret related list server in YAHOO. ... I have virtually no security other than what I need to get by. ... While you can certainly run RACFDRV as-is (in a RACF environment, ... fundamentally different approaches to security definitions. ...
(bit.listserv.ibm-main)
Re: How to Prevent reverse engineering .NET
... machine of the potential attacker, then by definition your code is ... cleartext unavailable, which would mean that people wouldn't be able to run ... which means you incur overhead for decrypting before running. ... It's really just security through obscurity unless ...
(microsoft.public.dotnet.framework)