I think you'll have better luck with Obfuscation. I haven't done it before and I am sure others can suggestion their favorites, but Brent Rector is a super bright guy so I usually recommend Demeanor (http://wiseowl.com) ... but I don't know the pros and cons.
Thanks, Shawn Wildermuth http://adoguy.com http://wildermuthconsulting.com Microsoft MVP (C#), MCSD.NET, Author and Speaker -----Original Message----- From: Discussion of advanced .NET topics. [mailto:[EMAIL PROTECTED] On Behalf Of Girish Jain Sent: Tuesday, April 03, 2007 4:42 AM To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM Subject: [ADVANCED-DOTNET] Confidential Data from Source Code Hi All, I need suggestion from all the experts for a concern of mine. I am working on a windows forms app and we need to encrypt certain data and store it on a local file. The key used for encrypting or decrypting certain confidential data (which is finally written to a file) is there in the source code itself. When we deploy our applications the source code can be easily opened up using ildasm or Reflector. It means somebody can comfortably extract out the key used for encrypting the strings. How can I prevent this? I had heard of something called native code deployment using ngen.exe which I have no idea about or its pros and cons. Can someone please suggest as to how should I go about implementing this so that after deploying the application nobody can extract the source code? Thanks in advance Cheers, Girish Jain _________________________________________________________________ Get the new Windows Live Messenger! http://get.live.com/messenger/overview =================================== This list is hosted by DevelopMentorR http://www.develop.com View archives and manage your subscription(s) at http://discuss.develop.com =================================== This list is hosted by DevelopMentorĀ® http://www.develop.com View archives and manage your subscription(s) at http://discuss.develop.com
