视频加密本地软件 [英] Video encryption for local software
问题描述
我想表明我的本地软件的一些视频文件的情况下,用户希望复制他们一些保护。我搜索的加密方法和一些DRM解决方案,但我不希望互联网连接,如果不是唯一的选择。我发展我的C#应用程序。视频文件将是在CD上。
I want to show some video files in my local software with some protection in case a user wants to copy them. I searched encryption methods and some DRM solutions, but I don't want internet connection, if that is not the only choice. I am developing my application with C#. Video files will be on CD.
Basicly什么,我打算做的是,不断光盘加密视频文件,并且对RAM解密因此不是每个播放器可以播放加密文件中,只有我的球员能,他们将不会被复制(我希望)。我听说过一个类似的项目德尔福提出,但我不知道这是在C#中的最佳方式。
Basicly what I am planning to do is, keep video files encrypted on CD, and have decryption on RAM so not every player can play encrypted file, only my player can and they won't be copied (I hope). I heard a similiar project made on Delphi but I don't know if this is the best way in C#.
我的问题是
- 这是C#中的好办法?
- 是这种方法适用于MP4或AVI文件?
- 是否有这个过程在C#中的所有库
进展:
我搜索关于CD复制保护的SO。用户建议保持预先写入区的CD数据,并存储在某个地方。也许我可以做的唯一玩家,每个人都可以有嵌入的数据。或者,使用基于Web的数据库,但恐怕这将创造更多的安全漏洞,我将还需要安全数据库。然而,它可以作为没有用户将具有嵌入在它们的程序的关键更好的主意。我觉得我真的坚持:)任何帮助将不胜感激。
Progress: I searched about CD copy protections in SO. A user recommended keeping data of CDs prewritten area and store it somewhere. Maybe I can make unique players, each can have that data embedded. Or, use a database on web but I'm afraid this will create more security leaks, I will need to secure database also. However, it can be a better idea as no user will have the key embedded in their program. I feel like I'm really stuck :) Any help will be appreciated.
推荐答案
DRM是始终通过隐藏的安全性。只要你还不清楚,它可能为你工作了一段时间。但是...
DRM is always security through obscurity. As long as you are obscure, it might work for you for a while. However ...
您可以使用自定义的解密视频播放和人民将刚才复制的球员。因此,他们必须保护球员太 - 这意味着产生神奇的令牌,让用户输入令牌。除非你想要的。如果你想要这个工作,你必须有某种形式的产品注册,其中注册密钥(魔令牌)基于起来确定目标计算机上的信息。
You can use a custom decrypting video play and people will just copy the player. So, they would have to protect the player too -- this means generating a magic token and having the user enter that token. Unless you want. If you want this to work, you must have some form of product registration, where the registration key (the magic token) is based up identifying information on the target computer.
例如,从目标计算机结合一些东西,说主硬盘驱动器卷ID,创建时间戳或系统卷(只是为了保持真实简单),然后你写的注册软件将这些时间项的互联网服务和生成令牌,这是通过任何机制放回到用户的计算机。您的软件,然后通过电脑当运动员奔跑和失败,许可方面的错误,如果他们不匹配的算法相同的标记。
For example, you combine some "stuff" from the target computer, say primary hard drive volume id, create timestamp or the system volume (just to keep it real simple), then you write a webservice that register the software takes these time items and generates the token and this is put back to the users computer by whatever mechanism. Your software then computers the token via the same algorithm when the player runs and fails with a licensing error if they don't match.
您现在有新的问题。 1)人们可以检查本地可执行找出你令牌的算法,只是它计算出OK / NOT OK标志和修补程序代码,使其确定解密的视频流。 2)如果有人重建的自己的电脑由于硬盘驱动器故障,他们的软件不再起作用。所以,你必须明白这一点太除非你想有不满意的客户说,你在Facebook上不好的东西。 3)人们知道你的授权服务器,当你走出去的企业要下去,死了。等等这样它们就不会买摆在首位4的受保护的视频),你会浪费你很多时间,可以花更多的高效赚钱做一些有用的东西。 5)你会浪费钱呢
You now have new problems. 1) People can inspect the local executable to figure out you token algorithm and just where it computes the OK/NOT OK flag and patch the code to make it ok to decrypt the video stream. 2) If someone rebuild's their computer due to a hard drive failure, their software no longer works. So, you have to figure that out too unless you want to have unhappy customers saying bad things about you on facebook. 3) People know your licensing server will go down when you go out of business, die., etc. so they won't buy your protected video in the first place 4) You will waste of lot of your time that could be spent more productively earning money doing something useful. 5) And you will waste money too
通过使用DVD和其本土版权保护,你不要浪费你很多时间,但你没有得到更多的保护要么是很多人非常聪明,他们喜欢的搜索引擎中键入解密DVD。这就是小林丸情景
By using a DVD and its native copy protection, you don't waste a lot of your time, but you don't get much protection either an lots of people are smart enough to type in "decrypt dvd" on their favorite search engine. This is the "Kobayashi maru scenario"
忘记提到最后一个送终。 C#是通过隐藏的安全不好的做法,因为CLR可以很容易地拆卸,您还需要来混淆你的C#代码 - 仍然很容易被反编译/调试的原生X85代码
Forget to mention one final coffin nail. C# is a bad approach for security through obscurity because CLR can easily be disassembled, you would also need to obfuscate your C# code -- still much easier to decompile / debug that native x85 code.
这篇关于视频加密本地软件的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
