If you do want it to be secure then you might want to use something like ASProtect as a final step to protect the exe. We use it for our executables when we are sending them to places which we think could be a bit dodgy. No idea of how effective it is but my investigation a few years but suggested it was a moderate disincentive to crackers (ie it can be broken but does take a bit of messing around for them). It also has the advantage of making your exe much smaller (ours go from 12MB to about 4).
We use an older version in simple mode (ie we haven't added in our own DLL or routines to callback the protection layer). I assume the new versions of ASProtect are similar but improved to keep up with latest hacking methods. Cheers, David. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Leigh Wanstead Sent: Tuesday, 11 July 2006 1:31 p.m. To: NZ Borland Developers Group - Delphi List Subject: RE: [DUG] Encryption / Decrption I think the real question is how secure it needs to be. Regards Leigh www.smootharm.com -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Phil Middlemiss Sent: Tuesday, 11 July 2006 1:25 p.m. To: NZ Borland Developers Group - Delphi List Subject: Re: [DUG] Encryption / Decrption There are many ways to do that. You could, for example store the password as a collection of constant Byte values and put them together as chars when using the password. I use something similar, but not quite that. You could convolute it many ways. Phil. Robert martin wrote: > Hi > > Yeah my app is actually just encrypt some text and store it in its > DB. It will Decrypt the information for processing purposes. The > DCPcrypt stuff looks great. However now im left with what to use as a > password and how to store that in my app. > > > > > > Rob Martin > Software Engineer > > phone +64 03 377 0495 > fax +64 03 377 0496 > web www.chreos.com > > Wild Software Ltd > > > > Conor Boyd wrote: >> No problems. >> >> Is your app going to be doing both the encrypting and decrypting at >> either end? >> >> Because if it's not (and the recipient of the encrypted data is using >> some other standard PKI tool to decrypt the data), then you are going to >> have to look at certificates and how your app manages them. >> >> Good luck. >> >> Cheers, >> >> Conor >> >> -----Original Message----- >> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] >> On Behalf Of Robert martin >> >> Thanks Conor >> >> I am looking at building it into a shipping app so this seems like a bit >> of a no go. But thanks for the info :) >> >> Conor Boyd wrote: >> >>> Yes, MS does provide a crypto API on most Windows platforms, exposed >>> as a COM DLL (known as CAPICOM). It's based around Certificate >>> Services, which you can configure using MMC (Microsoft Management >>> >> Console?). >> >>> To configure Certificate Services, run MMC from the command line, >>> choose File, Add/Remove Snap-in, hit the Add button, choose >>> Certificates, click OK. >>> >>> But you'll then have to go away and read up on certificates, and how >>> to use the Crypto API, etc. Googling should get you a long way there. >>> >>> Here are a few links to get you started: >>> http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccr >>> yp >>> to/security/using_capicom.asp >>> http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccr >>> yp >>> to/security/cryptography_objects.asp >>> http://www.awprofessional.com/articles/article.asp?p=31065&seqNum=1 >>> http://www.seifried.org/security/cryptography/crypto-book/index.html >>> >> >> _______________________________________________ >> Delphi mailing list >> [email protected] >> http://ns3.123.co.nz/mailman/listinfo/delphi >> >> > _______________________________________________ > Delphi mailing list > [email protected] > http://ns3.123.co.nz/mailman/listinfo/delphi > > > _______________________________________________ Delphi mailing list [email protected] http://ns3.123.co.nz/mailman/listinfo/delphi _______________________________________________ Delphi mailing list [email protected] http://ns3.123.co.nz/mailman/listinfo/delphi
