locked
what is the security check for the web application's .dll ? RRS feed

  • Question

  • User532485037 posted

    hi...

    My question is when we pulish site... it's .dll is gat created . 

    but there are tool by using that anyone can see our code ... application is highly ulnerable !!!

    how to take over this issue ?

    Monday, September 23, 2013 2:19 PM

Answers

  • User-1454326058 posted

    Hi gj11944,

    Thanks for your post!

    As far as I know, there is no way to prevent decompiling of .net code, with that said a good obfuscator will make reflected code harder to read, some of them like dotfuscator will prevent reflector from showing the code. However, you always be able to see the IL.

    On the other hand, as far as I know that Software Proctection and Licensing Service which would encrypt the IL and use a custom VM that was tried to an encryption key which preventing reflecting using the conventional tools. This had a huge performance cost, however it was good if you wanted to protect critical algorithims or your licensing code.

    Here is a reference that you can get more information about Software Potential.

    http://www.inishtech.com/

    Thanks

    Best Regards

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Thursday, September 26, 2013 2:02 AM

All replies

  • User551462331 posted

    read this

    http://forums.asp.net/t/1442467.aspx

    hope this helps...

    Monday, September 23, 2013 2:26 PM
  • User-1454326058 posted

    Hi gj11944,

    Thanks for your post!

    As far as I know, there is no way to prevent decompiling of .net code, with that said a good obfuscator will make reflected code harder to read, some of them like dotfuscator will prevent reflector from showing the code. However, you always be able to see the IL.

    On the other hand, as far as I know that Software Proctection and Licensing Service which would encrypt the IL and use a custom VM that was tried to an encryption key which preventing reflecting using the conventional tools. This had a huge performance cost, however it was good if you wanted to protect critical algorithims or your licensing code.

    Here is a reference that you can get more information about Software Potential.

    http://www.inishtech.com/

    Thanks

    Best Regards

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Thursday, September 26, 2013 2:02 AM