[prev in list] [next in list] [prev in thread] [next in thread] 

List:       secprog
Subject:    RE: Secure Software Key
From:       "Ogle Ron (Rennes)" <ron.ogle () thomson ! net>
Date:       2002-09-03 16:26:55
[Download RAW message or body]

A more secure solution might be possible if the system that decrypts the
data from the CD is required to use a FIPS 140-1 level 3 piece of hardware
and the system can connect "home".  However, once the data is decrypted, it
will be available for copying.

If you are talking about a standard PC, then no way because you don't
control the system.  One way or another the user can insert software to be
able steal the decryption keys.

Ron Ogle
Rennes, France

> -----Original Message-----
> From: Yannick Gingras [mailto:ygingras@eclipsys.qc.ca]
> Sent: Thursday, August 29, 2002 11:46 PM
> To: secprog@securityfocus.com
> Subject: Secure Sofware Key
> 
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> 
> Hi, 
>    I am wondering if there are any techniques to make a 
> CD-Key of the like 
> unbreakable.  Either by giving it a cancelation date and a 
> periodic renewal 
> from a server or just by using self md5 signature on the resulting 
> executable.  I know it must not be easy because the whole 
> software piracy 
> problem would be resolved but there must be some way to make 
> it really hard 
> to break it.  Anyone have hints on this issue ?
> 
> Thanks
> 
> - -- 
> Yannick Gingras
> Network Programer
> ESC:wq
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.6 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
> 
> iD8DBQE9bpYzuv7G0DNFO+QRAqBhAKChTeKXwD8zDMwf+okAKJXnnpknwACgtXZ7
> v3bBABue0VX/Uy86Fhn9Ifs=
> =Uwqj
> -----END PGP SIGNATURE-----
> 
[prev in list] [next in list] [prev in thread] [next in thread]