Announcement

**dloomis** · 12-23-2002, 07:31 AM

Re: Reply to post 'How do you protect proprietary Studies/Formulas '

Did you try Tools, Encrypt/Decrypt?

----- Original Message -----
From: <[email protected]>
To: <[email protected]>
Sent: Monday, December 23, 2002 10:24 AM
Subject: Reply to post 'How do you protect proprietary Studies/Formulas '

> Hello dloomis,
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>

**mattgundersen** · 12-23-2002, 08:39 AM

Re: Reply to post 'How do you protect proprietary Studies/Formulas '

Hi nrogers805,

I see Dave Loomis responded with the encrypt/decrypt which will allow you to
password protect and encrypt your code.

You can also set an expiry date for your formula. To do that, go into your
/formulas/other folder and look @ the ExpiredFormula.efs

m.

--- [email protected] wrote:
> Hello mattgundersen,
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>

**nrogers805** · 12-23-2002, 01:09 PM

Thanks guys

**nrogers805** · 01-02-2003, 08:42 AM

Is there a way to protect the formula so that it can only be run on the PC that it was installed on?

Or, is there any other way of preventing 'copies' being made?

**gspiker** · 01-02-2003, 01:18 PM

There is no way of doing that, however, if you encrypt the file and use a one month (or so) time expir. then someone would have to not only steal the .efs file, but have to know how to unencrypt it to modify the expir. date to allow it to keep running.

**nrogers805** · 01-03-2003, 02:28 AM

Is it possible somebody could unencrypt a formula?

What about the use of DLL's, couldn't they be used in some way to build extra security for the formula??

**gspiker** · 01-07-2003, 12:18 PM

Hi,

I was hoping Matt, Dion, Jason or someone from eSignal would comment on this, but as they haven't, I'll give you my take.

If you efs is created such that it needs a .dll to run (ie: looks for some kind of return from it), the obviously your .dll can do anything it wants to generate that return. Things like examining the registry file, demanding some input from the user each time it is run, etc...

However, the problem is that if I can decrypt the efs file, then I will know what the .dll needs to return to execure and I can fake it out.

There may be some way to use .dll to implemet extra security, but any methods I can think of off the top of my head would all be moot if the base efs code is readable.

Maybe Matt or someone can comment on the type of encyption used, number of bits used, etc. That may make you feel safer.

**mattgundersen** · 01-07-2003, 01:23 PM

Here's an idea...

This does not exist - YET

Is there a way to protect the formula so that it can only be run on the PC that it was installed on? Or, is there any other way of preventing 'copies' being made?

What if... we added a function go EFS "getUserName()". This would return the name of the user logged in. From that, you could add *something like* this to your EFS:

PHP Code:




var un = getUserName();

function isValidUser() {

   if(un == "USERNAME")

        return true;

    return false;

}



function main() {

    if(!isValidUser())

        return;





    // else... do your thing...

}

The idea is that you could protect your formula by only allowing certain users to run the formula. You then encrypt the formula and can make it publicly available. Although this doesn't limit what PC's it runs on, it does limit WHO can run it.

m.

**mattgundersen** · 01-07-2003, 01:27 PM

oK, it's done...

7.2 will have a new EFS function: getUserName()

m.

**gspiker** · 01-07-2003, 01:34 PM

Matt,

While a good idea, it still doesn't address the issue of "how secure" is the encryption used. If it isn't very secure, then the feature will not help.

Announcement

How do you protect proprietary Studies/Formulas

How do you protect proprietary Studies/Formulas

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment