Re: Urgent: Securing a .net 1.1 application
- From: tomcharnley@xxxxxxxxx
- Date: Fri, 01 Jun 2007 03:43:45 -0700
On 29 May, 12:11, "George Macrides" <gmacri...@xxxxxxx> wrote:
Hi All,
I need some help!
I am about to complete an important company application that will be hosted
outside our building. Is there a way of hiding/encrypting/securing bits of
code so that even the Web Administrator of the hosting company cannot mess
with my stuff and use my app as his/hers? MS SQL server 2k will also be
used, if that makes any difference. I am kinda old fashioned using vb .net
1.1 with VStudio 2k3.
I thought of building a dll but with reverse engineering these days, that
doesn't seem to be very safe.
Any suggestions will be greatly appreciated!
Tia
George M.
You can't stop people using Reflector to grab your code, obfiscation
doesnt stop them stepping through the code, although routines that
were called getUser() etc would be renamed a(), so the meaning
attached to functions and variables is protected.
If you want to stop people reengineering your code and replacing it,
then again this can't be stopped directly, but you could strong name
your exe and add a code access rule on the target machine so that your
code will only load if the public key is the same, but I suppose they
could delete that rule as well.
You could encrypt some functionality into a dll and load it at
runtime, but the encryption key would be visisble, via reflector, in
the non encrypted bit that loads the dll.
So as far as I can see you can only raise barriers...
Cheers
Tom
.
- Prev by Date: Dot Net Security
- Next by Date: Re: Dot Net Security
- Previous by thread: Dot Net Security
- Next by thread: There is a time and/or date difference between the client and server.
- Index(es):
Relevant Pages
|
