C
cmurthy
How are commercial Java softwares released by Oracle, Sun, etc?
What Java Obfuscators are used by the commercial Java products?
What Java Obfuscators are used by the commercial Java products?
cmurthy said:How are commercial Java softwares released by Oracle, Sun, etc?
What Java Obfuscators are used by the commercial Java products?
Judging by the StackTraces returned for most Java API's,
I am guessing that few, if any of them, are obfuscated.
But then, usually they are written well enough that the
programmers are *not* embarrassed of their own code,
so it hardly matters*.
* There are two other reasons that obfuscators are generally
used. Making code harder to reverse engineer, which is
rather pointless, and reducing the size of the distributable,
which can be quite effective, but carries its own development/
debugging overhead.
I'm not a hardcore JAVA
..programmer though.
But why aren't the code Obfuscated?
Above, did you intend to say that Obfuscating the code doesn't matter
to them at all?
Stating the issue i'm facing, I have created/used Java Wrappers around
a few API's written in C.
As a matter of Security issue, ..
..we need to use some kind of Obfuscation
for protecting the code from being reverse engineered.
I'm not a hardcore JAVA programmer though.
But why aren't the code Obfuscated?
Above, did you intend to say that Obfuscating the code doesn't matter
to them at all?
Stating the issue i'm facing, I have created/used Java Wrappers around
a few API's written in C.
As a matter of Security issue,
we need to use some kind of Obfuscation
for protecting the code from being reverse engineered.
Do you suggest any of the better Obfuscators being used commercially?
. Obfuscation slows
down Java decompilation. But it does in no way prevent decompilation.
Why should they? ...
.. Another larger set of
people who thing they need to hide something are the ones using stolen
code, e.g. non-compliant usage of GPL code is becoming epidemic.
Have a look at a disassembly of Jet natively compiled Java source
code. At the very most you might have the patience to take apart a
method or two.
That angle had not occured to me.
As an aside, were you referring to server side
code, or code intended for the client-side?
I would imagine there was a 'swords edge' problem
with using code illegally in apps., in that if the app.
became widespread and well known, surely the
legal owners of the code would be able to both
establish and prove* that the code, even obfuscated,
was ripped, wouldn't they?
Or have I vastly underestimated the power of
obfuscators?
Oh, unless of course the illegal app. was distributed
with a 'no reverse engineer' caveat in the licence.
That'd sure stop the legal owners from finding out.
Andrew said:Judging by the StackTraces returned for most Java API's,
I am guessing that few, if any of them, are obfuscated.
No. There are, for example techniques developed that don't care about
obfuscation when it comes to the detection of similarities in
executable code http://www.st.cs.uni-sb.de/birthmarking/
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.