View Single Post
  #96  
Old 05-08-2013, 20:08
Squidge's Avatar
Squidge Squidge is offline
Drunken Squirrel
 
Join Date: Oct 2002
Posts: 412
Rept. Given: 4
Rept. Rcvd 9 Times in 4 Posts
Thanks Given: 0
Thanks Rcvd at 6 Times in 6 Posts
Squidge Reputation: 9
Quote:
Originally Posted by mcp View Post
How about I give you a RSA4096 public key and you factor it for me? Quite obviously, you won't be able to do so, and I don't think anyone can arguably disagree with that (without trolling).
Whilst I agree, I don't see how that is relevant to software protection. Your analogy is like saying I let anyone download the fully registered version and say its uncrackable as the executable is encrypted by a 4096-bit RSA private key. Sure, it will take many years (maybe longer) to 'crack'.

However, make a piece of software runnable only with a license file, protect the license file with an RSA 4096-bit private key and I guarantee you it will be broken and fully registered versions available within 24 hours.

Same goes for if the license checking is built into a dongle. If you have access to the dongle, the software be made to work without it. I have done this many times for people who worry about the security of their software dongles.
Reply With Quote