How best to secure files?
Posted on 2007-08-09
I have an application supplied by a brokerage that places orders over the internet. I also have a third party charting program that I run, which has some script-language code that is compiled and runs in that environment and talks to the brokerage software via their API. I want to protect my intellectual property which went into the makeup of the script from ANY possibility of it being uploaded by anyone, including backdoors in the legitimate applications from the brokerage or the third party chart vendor. I can set up a hardware firewall with SPI and allow only the urls necessary. That would effectively prevent the charting software from uploading anything as it never needs to phone home, it just gets data from a data provider that I choose. The brokerage software could, however, have a back door in it, that could conceivably, well it's far fetched maybe, sneak an upload past the brokerage firewall. The coder that put the backdoor in the brokerage software would have to know the firewall, and be involved in the coding of the software, and they bring out new versions very frequently. Is this even worth thinking about really? The scripts have a dozen years of work on my part in them and the thought of some hacker stealing them is a bit painful. The scripts run compiled. Recommendations for methods or software that can deny access to source files except to a white list of programs are welcome, other solutions are welcome as well. That would leave only the compiled, running code as a loose end. Can somebody somehow upload the compiled code and reverse engineer it? I'm not too concerned about somebody physically accessing my computer and getting to files or hackware getting to the computer, I am going to dedicate a computer to just bare bones sofware needed for the work, no surfing at all with it...