Solved

Non Volatile Check  Not registry

Posted on 2009-05-14
4
184 Views
Last Modified: 2012-05-07
Hello,

I have a program that when installs sets a value in the registry.  When the program starts it checks this registry value to determine how many times the program has been run.  If its the first time then form1 will run, if not then form2 will run.

This works fine, however the security of the application could be compromised if someone manually changed the registry value to trick the program into believing that its the first run even though it might not be.
Im trying to think of mechanism that I could use to prevent / detect this?

Any suggestions most appreciated.

Thanks.
0
Comment
Question by:andyw27
  • 3
4 Comments
 
LVL 22

Accepted Solution

by:
cookre earned 500 total points
ID: 24389398
Encrypting the Registry values will get you a little more security.

But you'll still have problems with those who track changes across installs.

0
 

Author Comment

by:andyw27
ID: 24389439
I guess I could hash the value using MD5?
0
 
LVL 22

Expert Comment

by:cookre
ID: 24389445
Of course, you could always have the install require a web connection to your own site wherein you save install info.
0
 
LVL 22

Expert Comment

by:cookre
ID: 24390897
MD5 would be fine.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We all know that functional code is the leg that any good program stands on when it comes right down to it, however, if your program lacks a good user interface your product may not have the appeal needed to keep your customers happy. This issue can…
This article is for Object-Oriented Programming (OOP) beginners. An Interface contains declarations of events, indexers, methods and/or properties. Any class which implements the Interface should provide the concrete implementation for each Inter…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question