Thanks dean. What kind of tests did you do? I will
seriously be looking at
this product today for sure. I have found a few, but this
one also looks
good. One thing I am looking for is my understanding is
that some products
decrypt the assembly at run time and so it's loaded in
memory. This then
allows hackers to attach to the memory space and some how
access that
decrypted source, via debugging or other methods. I read
about one that
only decrypts on the fly the method that its needs, but have
only read a
little about this. htt
p://www.secureteam.net/solutionsTechnology.asp
Please email me off line if you like, jmt magentatech.com
Thanks.
-----Original Message-----
From: Discussion of building .NET applications targeted for
the Web
[mailto OTNET-WE
BDISCUSS.DEVELOP.COM] On Behalf Of Dean Cleaver
Sent: Thursday, September 07, 2006 12:21 AM
To: DOTNET-WEBDISCUSS.DEVELOP.COM
Subject: Re: [DOTNET-WEB] securing .net code
I've tested Xheo CodeVeil, and it seemed to work very well.
www.xheo.com
-----Original Message-----
From: Discussion of building .NET applications targeted for
the Web
[mailtoOTNET-WE
BDISCUSS.DEVELOP.COM] On Behalf Of Jeff
Sent: Thursday, 7 September 2006 11:15
To: DOTNET-WEBDISCUSS.DEVELOP.COM
Subject: [DOTNET-WEB] securing .net code
Can anyone recommend a product that will secure .net code
from
decompiling?
Have looked at thinstall but their cost for licensing is not
practical;
especially for unlimited user environment. Looking for
other options
that are not susceptible to memory dumps, standard
obfuscation
limitations. I have seen a few that claim to run the
product in their
own Virtual Environment. Has anyone actually used any of
these and
tested whether they actually claim to do what they say? We
have a .net
1.1 application that we were going to use demeanor to
obfuscate but
don't feel this provides enough security, is there anything
else we can
do? In addition to the IP in the code itself that we want
to secure,
another issue we are dealing with is not allowing people to
take our
assemblies and use them (reference) from within another
separate project
for hacking purposes. I see there is a new attribute in 2.0
that helps
in this (inte
<http://msdn2.microsoft.com/en-us/library/
system.runtime.compilerservice
s.in
te> rnalsvisibletoattribute) but our app is older and
written in 1.1.
Any info appreciated. Thanks.
===================================
This list is hosted by DevelopMentor(r) http://www.develop.com
View archives and manage your subscription(s) at
http://discuss.develop.com
===================================
This list is hosted by DevelopMentor. http://www.develop.com
View archives and manage your subscription(s) at http://discuss.develop.com
===================================
This list is hosted by DevelopMentorŪ http://www.develop.com
View archives and manage your subscription(s) at http://discuss.develop.com
|