Re: Preventing Software Piracy ???

"Doug McIntyre" <merlyn@xxxxxxxxx> wrote in message
"Peter Olcott" <NoSpam@xxxxxxxxxxxxx> writes:
If a computer has to run it, the software can be
No matter what.

Not if the computer that is running it is on the dongle
100% totally inaccessible to any and all outside

Then its not a computer, you now have a black box, and
it can be easier when you control the whole thing,
although again,
if somebody made it, it can be taken apart. Dongles don't
have enough
CPU power/memory on them to run the whole program, typical
sizes of dongles are 32k or 64k.

How about cracking PGP encryption? Phil Zimmerman (PGP's
inventor) told me the computational complexity of this.
Cracking PGP is infeasible. It would take something like
trillions of years to crack a single message. If this kind
of technology could be directly applied to copy
then copy protection would become uncrackable.

The main protection offered by PGP is that the private key
stays in
the hands of the sender. In a computer system, you will
need to be
running this without a physical visit by you each time the
end user
wants to run the program to provide the private key needed
to unlock it.

It is stored on the dongle in encrypted form. The dongle
erases all of its memory when disassembled.

Even so, the computing power needed to crack a PGP message
is rapidly
coming down in time, but still, the main thing is a
computer program
can't use public key encryption easily, because you will
need to
embed a private key in the binary as well as the public
key seen.

I have seen some license systems utilize GPG to sign their
license files.
One way to circumvent this system is to find the GPG
private key that is
embedded inside the program code (usually pretty easy to
replace it with one of your own, and now you can sign any
license file
you want to provide the code and the code will happily
accept it as
its own.

When the private key is stored on the dongle in encrypted
form, and the execution of the dongle can not be traced,
then the private key is safe.