Setup security
-
Mark Fulford
- Posts: 25
- Joined: Tue May 23, 2006 2:22 pm
Setup security
How secure is an MSI installation. If I write serial numbering code within the script, how easy is it for someone to decompile the code and find the algorithm? How easy is it to completely bypass the setup script in order to extract files?
-
CandiceJones
- Posts: 904
- Joined: Thu Dec 22, 2005 7:03 pm
- Contact:
Take the following measures to protect your code:
1) Define a global setup password. This encrypts your setup using 256 bit strong AES encryption.
2) Put all critical files inside web media blocks. This way they won't even be downloaded, save installed, if the authentication fails.
3) Authenticate users on-line (or with a serial mechanism) before proceeding with the main install phase. See the Online User Authentication and Serial Validation samples in the InstallAware IDE for ideas and implementation details (on the main menu, Click File | New | Samples).
1) Define a global setup password. This encrypts your setup using 256 bit strong AES encryption.
2) Put all critical files inside web media blocks. This way they won't even be downloaded, save installed, if the authentication fails.
3) Authenticate users on-line (or with a serial mechanism) before proceeding with the main install phase. See the Online User Authentication and Serial Validation samples in the InstallAware IDE for ideas and implementation details (on the main menu, Click File | New | Samples).
Candice Jones
InstallAware
Home of The Next Generation MSI Installer
Get your free copy today - http://www.installaware.com/
InstallAware
Home of The Next Generation MSI Installer
Get your free copy today - http://www.installaware.com/
Who is online
Users browsing this forum: Majestic-12 [Bot] and 70 guests
