WebApp Sec mailing list archives

Re: HTML/Java Protection

From: Peter Conrad <conrad () tivano de>
Date: Tue, 20 Sep 2005 08:34:32 +0200

Hi,

On Mon, Sep 19, 2005 at 05:01:42PM -0000, confusionvalley () netcabo pt wrote:


I'm currently developing a Java applet and i want to protect the .class from being downloaded.


you don't want that. Browsers *must* download the .class file in order
to execute it. So if you "protect" it successfully, your applet will no
longer work.

The real objective is to protect the source code from the html and not so grabbers.
Any idea to protect the html/java?


Use a java obfuscator. That's about the best protection you can get, but
it will not stop a determined attacker. There is *no way* to stop a 
determined attacker.

Bye,
        Peter
-- 
Peter Conrad                        Tel: +49 6102 / 80 99 072
[ t]ivano Software GmbH             Fax: +49 6102 / 80 99 071
Bahnhofstr. 18                      http://www.tivano.de/
63263 Neu-Isenburg

Germany

Current thread:

HTML/Java Protection confusionvalley (Sep 19)
- Re: HTML/Java Protection Peter Conrad (Sep 20)
  - Re: HTML/Java Protection Roshen Chandran (Sep 20)
- Re: HTML/Java Protection Mark Quinn (Sep 20)
- Re: HTML/Java Protection Antoine Martin (Sep 20)
  - Re: HTML/Java Protection Yousef Syed (Sep 20)