加密文件可以让客户端软件得到激活? [英] Having a file encrypted to lets know the client software got activated?
问题描述
- 客户端必须加密文件,以确定软件是否激活。
这实际上意味着客户端必须读取加密文件..但问题是我们实际上需要私钥在那里,这是一个好主意,因为一些poeple可以开始使用该密钥的许可证文件。激活服务器将发送回客户端的数据文件加密,然后客户端保存该文件。
解决此问题的最佳方法是什么?
所以我正在寻找的是一种满足要求的方式...
- 客户端必须加密文件以确定软件是否已激活。
- 客户端以未加密/加密的形式将用户数据发送到激活服务器。没关系
- 激活服务器检查数据,然后确定客户端是否可以激活。
- 如果客户端可以被激活,然后服务器发送许可证文件的加密形式..但现在出现问题。如果客户端上的私钥不是非常不安全的,那么无法解密客户端上的文件! / li>
任何想法?
我想你应该看看数字签名: http://www.codeproject.com/ KB / security / xmldsiglic.aspx 似乎是您问题的一个很好的答案。
I am facing a rather odd problem right now. If you fellow this : Best place to put key or password used for encryption? i was looking at a way to encrypt data. Using RSA seemed to be a good choice. However we have a problem since my requirements are thoses fellowing...
- Client must have a file encrypted in order to determine if the software is activated.
That actually mean that the client must read the encrypted file.. but the problem is that we actually need the private key to be there which isnt a good idea since some poeple could start making their license file using that key. The activation server encrypt the data file which are sent back to the client and then the client save that file.
What are the best way to solve this problem ?
So what i am looking for exactly is a way for thoses requirements ...
- Client must have a file encrypted in order to determine if the software is activated.
- Client sent user data to the activation server in unencrypted/encrypted form. That doesnt matter. Sure it would be better encrypted at this point.
- The activation server check that data and then determine if the client can be activated.
- If the client can be activated then the server send the encrypted form of the license file.. but the problem appear now.. there is no way to deencrypt the file on the client if the private key isnt on the client which would be pretty insecure!
Any ideas ?
I think you should have a look to digital signatures : http://www.codeproject.com/KB/security/xmldsiglic.aspx seems to be a good answer to your question.
这篇关于加密文件可以让客户端软件得到激活?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
