Solved

How can I protect my software?

Posted on 2010-11-30
10
441 Views
Last Modified: 2012-05-10
Hi there;

I implemented a software in visual basic and completed it successfully, but when I reverse engineer it, I cracked my software.

So, my question is that "How can I protect my software?" against bit manipulation of known tools?

Kind regards.
0
Comment
Question by:jazzIIIlove
  • 5
  • 5
10 Comments
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34241738
define cracked?  What exactly are you trying to protect from or hide?
0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34244252
In a diassemly of my software, I jumped from addresses to another addresses and cracked my own software.

I implemented it in visual basic. How can i provide a security mechanism for my software?

Regards.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34250466
0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34250718
I alreaady obsfucated my code, but the problem is I still can crack back my software.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34257315
Again, what do you mean by crack?  

Are you talking bypassing some sort of protection or making unintended behavior or what?  Without getting into specfics there's nothing that can be done.

Also, as they pointed out, there's no *true* way to totally block your code.  Everything gets compiled into machine language and people can build up from there.
0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34264567
I know there is no perfect secrecy. My issue I disabled some modules of the program for trial use but I easily find out the instruction to crack it and that drove me crazy. I need some strategies at least to give the impression for the cracker that cracking is unfeasible in a timely fashion...

Regards.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34283209
I would honestly provide 2 binaries, it's the best way to ensure that the modules don't get cracked.  Just comment them out for the trial.

I'm not sure if using the compiler declaritives would work, in that case you can have a release mode for trial where you could do something like

#if trial
   exit sub
#end if

0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34411456
You mean one binary for trial, one for full licensed? and if the user enters/inputs the right "thing" for enabling the software, which binary should be in charge for this?

I may be confused with your last comment, please explain further...

P.S. I am a little late. sorry for this.
0
 
LVL 40

Accepted Solution

by:
Kyle Abrahams earned 500 total points
ID: 34464734
Correct, 2 binaries.  say: trial.exe,  full.exe

I would recommend they BOTH be in charge of checking for registration.    

1)  Make a copy of the hardware being used (MAC - CPU Chip, Motherboard version) and hash it to get a unique code

2)  Write that value so that full.exe has access to it (registry usually).  

On startup, ensure that the registry value matches the hash of the current code, and that you have the same machine hardware specs.  If someone changes there NIC card or CPU, this will become invalid and you'll have to let them re-register.


The purpose of having 2 binaries is so that the other can't be hacked / unassembled.  In that case, you would want the trial version to also go get the full version form somewhere.  (Either using a binary reader to write the file http://www.experts-exchange.com/Programming/Languages/C_Sharp/Q_26301264.html or dynamically download the file from  a secured location).

0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34604690
I don't know why hesistate to reply back but yes you are right.
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Access 2016 5 63
Oracle encryption 12 48
Review of a VPN cert policy 4 43
Detect Failed Logins within Event Viewer 4 31
In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
It’s the first day of March, the weather is starting to warm up and the excitement of the upcoming St. Patrick’s Day holiday can be felt throughout the world.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question