• Post Reply Bookmark Topic Watch Topic
  • New Topic

Security  RSS feed

Esteban Feldman
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi all

I'm kind doing a plug-in based app. where the client can get a .jar where the plug-in lives.

I have some issues i want to address:

1- I want that that .jar can be used only by that client (not allowing the copying of the file to another system). we can say that the .jar is deployed through internet.
* my thought on this is to sign the jar with client's public key.
* you think this is the best or there is any other way?. if this is the way how can i programatically create a key/pair with client's data?
* also the client's app will use His key to open the jar and in this way use his contents (ex: loading a class through reflection)

2- any way to avoid jar opening and decompiling

PS: please forgive my bad english

Consider Paul's rocket mass heater.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!