Re: [IMPORTANT] obfuscators
From: Richard Blewett [DevelopMentor] (richardb_at_NOSPAMdevelop.com)
Date: 11/10/04
- Next message: Yama: "Re: [IMPORTANT] obfuscators"
- Previous message: Mike: "Comparing 2 arrays, what's the fastest way ?"
- In reply to: Yama: "[IMPORTANT] obfuscators"
- Next in thread: Yama: "Re: [IMPORTANT] obfuscators"
- Reply: Yama: "Re: [IMPORTANT] obfuscators"
- Messages sorted by: [ date ] [ thread ]
To: microsoft.public.dotnet.languages.csharp Date: Tue, 09 Nov 2004 16:35:38 -0800
There is only one way to stop someone reverse engineering your binary - don't give them the binary, only provide remote access. Once you have given them your binary then you are in a battle as to the cost in reverse engineering compared with the benefit they will get from reverse engineering.
For example, reverse engineering an industrial strength cryptography algorithm gives ytooiu nothing as the algorithm is public knowledge (in general) and the cryptography, just by its nature is hard to crack. Reverse engineering MS Word would not give you a huge amout of information about howq Word works as its complexity lives at the macro level not within each method. So many application just provide no benefit from reverse engineering.
If you must supply the binary and it does have IP in teh code (like a new video CODEC) then you have two options: obfuscation or building the sensitive operation in non-managed code and using interop. The latter takes the reverse engineering difficulty to the same level as the world before .NET.
Regards
Richard Blewett - DevelopMentor
http://www.dotnetconsult.co.uk/weblog
http://www.dotnetconsult.co.uk
nntp://news.microsoft.com/microsoft.public.dotnet.languages.csharp/ Gentlemen,
I realized that code security can easily be corrupted by cheap decompilers.
What does Microsoft suggest using to disable or at the least make it
impossible for the intruder to reverse engineer DLLs or EXEs.
Thanks,
Yama Kamyar
Relevant Pages
... I realized that code security can easily be corrupted by cheap decompilers. ... What does Microsoft suggest using to disable or at the least make it ... Yama Kamyar ...
(microsoft.public.dotnet.languages.csharp)
... > DevelopMentor is a training company that specializes in distributed ... > have always been the Geurilla courses, ... > I've been teaching, freelance, for DevelopMentor for about 5 years, ... > we train alot of Microsoft people in .NET and other technologies). ...
(microsoft.public.dotnet.framework)
... Dominick Baier - DevelopMentor ... We have no problems but we have added our own tblRoles table to go with the aspnet_Roles table that Microsoft provides. ... extra information, because one table is cleaner than two. ...
(microsoft.public.dotnet.framework.aspnet.security)
... Maybe Microsoft should name it 2006 at the beginning. ... > In theory before Dec 31st - if not they will have to rename the next ... > Richard Blewett - DevelopMentor ... Prev by Date: ...
(microsoft.public.dotnet.framework)
... Richard Blewett - DevelopMentor ... Since Microsoft Allowd such a bad thing, there are product doing this bad ...
(microsoft.public.dotnet.languages.csharp)
