M
Matthew Inger
Can anyone suggest a strategy for safeguarding an encryption
algorithm which is to be used in both java and c/c++?
Key based algorithms are desired. Here's the issues:
1. If i have to decrypt from java, i can't have the .dll/.so
not export at least the jni methods for encryption/decryption,
so someone could always view the symbol table and find those
jni routines.
2. I don't want to duplicate the code in java, as anyone with a
decompiler can get to it (even if it's obfuscated, someone could
figure it out).
3. Given that #1 is not a problem, how to safeguard the key is
another question. Do I put it in a file on disk, and let the OS
permissions protect it?
Any suggestions here would be greatly appreciated.
algorithm which is to be used in both java and c/c++?
Key based algorithms are desired. Here's the issues:
1. If i have to decrypt from java, i can't have the .dll/.so
not export at least the jni methods for encryption/decryption,
so someone could always view the symbol table and find those
jni routines.
2. I don't want to duplicate the code in java, as anyone with a
decompiler can get to it (even if it's obfuscated, someone could
figure it out).
3. Given that #1 is not a problem, how to safeguard the key is
another question. Do I put it in a file on disk, and let the OS
permissions protect it?
Any suggestions here would be greatly appreciated.