如何使用物镜C安全地存储数据? (Mac/Cocoa Dev) [英] How do I store data securely with objective C? (Mac/Cocoa Dev)

问题描述

我正在尝试创建可可应用程序的Trial部分.我已经设置了所有许可(包括密钥)等.

I'm trying to create a Trial part of my cocoa application. I have the licensing all set up (including keys) etc.

但是我想知道如何存储(例如，第一次在用户在安全的地方运行程序时，用户无法轻松找到和/或编辑程序).

But I was wondering how I could store e.g the first the time the user ran the program in a secure place, where the user can't easily find it and/or edit it.

我一直在摆弄NSUserDefaults standardUserDefaults，但是用户可以在Library> Preferences中轻松找到并编辑该数据.

I was having a fiddle with NSUserDefaults standardUserDefaults, but the user can easily find and edit that data in Library > Preferences.

推荐答案

我反对让它超级安全.我们曾经进行过服务器激活，但是完全没有了.原因如下:

I'd argue against making it super-secure. We once had a server activation but completely went away from it. Here are some of the reasons:

• 即使是最安全"的存储方式也可以被破坏
• 即使对于利基产品，无论您的方法多么安全，都可能会开发出一条裂缝
• 很少有非常昂贵，非常安全的方法.所有其他人都被破解了
• 这与公平和诚实的用户背道而驰，这使他们更难修复导致问题的内容
• 如果用户确实破解了您的软件或破坏了您的安全性，那么他可能也永远不会购买它
• 80％的用户甚至不知道首选项文件是什么
• 所有用户中有95％的人认为无法将其删除以延长试用期
• 一种大量重置试用期的简单方法，可以简化您对由于各种原因要进行第二次试用的用户的支持
• 信任用户是一个不错的卖点
• 高级用户倾向于反对具有过多保护的软件

• Even the most "secure" storage method can be broken
• Even for a niche product a crack might be developed, no way around, no matter how secure your method
• There are few, very expensive, very secure methods. All others have been cracked
• It goes against fair and honest users, making it harder for them to fix things causing problems
• If a user does crack your software or circumvents your security, he'll probably also never have bought it
• 80% of the users don't even know what a preference file is
• 95% of all users don't think of the possibility to delete it in order to extend the trial
• A simple way to reset trial periods massively eases your support for users you want to give a second trial for whatever reason
• Trusting users is a good selling point
• Power users tend to turn against software with too much protection

我很确定这些想法有一些例外，但很少.我想说:不要浪费时间在注册安全上，而是给

I'm pretty sure that there are some, but extremely few, exceptions from these thoughts. I'd say: don't waste your time on registration security but give

这篇关于如何使用物镜C安全地存储数据? (Mac/Cocoa Dev)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！