one way is to use a public key protocol to check for right to execute maybe a privatekey can also be enough.
an example could be: a key component of your EAR looks at the server name, and check if it is coherent with a certificate it has in it's keystore. you can create a certificate for each of your licensee, and deliver them in the EAR as a ressource (this mean you have to add it to your keystore in the program), or as a separate certificate to add to the java keystore... by the way to check that the certificate is your own, you should also embedd a (sub)CA certificate in your application, so that the user cannot change it. why not the text version of the certificate as a string... then load it in your java key store, and check the certificate that is deployed somewhere if it is 1- signed by the CA 2- having a name coherent with the server name. beside that, you should obscurate the java classes to avoid the smarters to hack your system... but is it your interest ? to avoid copy/paste license violation can be enough and hackers won't be frequent in serious organisations... If JSSE/JCE froml sun is not enough flexible try cryptix JCE which should use PKCS key storage formats... If it works, and if you want your solution to be maintained for free, put yout license system opensource ! It looks a little perverse but it could be usefull to explain that license respect and opensource are not oposite. > -----Message d'origine----- > De: Leigh Wanstead [mailto:[EMAIL PROTECTED]] > Date: jeudi 21 février 2002 03:59 > À: [EMAIL PROTECTED] > Objet: [JBoss-user] Copy protection > > > Hello everyone, > > I am not sure if this is a correct place to ask. Anyway, here is the > question. > > How to protect your ear files? I mean if you deploy ear into > application > server, how you prevent others simply copy this ear to > another application > server? What 3rd party tools would you recommend? > > Thanks in advance. > > Best Regards > Leigh > > > > _______________________________________________ > JBoss-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/jboss-user > _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
