Sentinel Hardware Keys Developer's Guide - Customer Connection ...

More documents

Recommendations

Info

Chapter 7 – Implementing Secure Licensing Contents Glossary Index Troubleshooting independent of the system clock—providing the best solution against time tampering attacks. Non-RTC tokens with Sentinel V-Clock also allow reliable and secure distribution of time-limited applications. These do not require an on-board battery to detect time tampering and allow you to tolerate the number of time tampering attempts specified in the cheat counter. Cheat Counter Behavior 170 Sentinel Hardware Keys Developer’s Guide Cheat counter is a count-down value that allows tolerating the time tampering attacks ranging between 1 second to 30 days (excluding the daylight savings) till it reaches zero. Its behavior is described as follows: Cheat Counter Behavior Scenario Outcome Corrective Measures When the system clock is tampered for a duration between 1 second to 30 days (excluding the daylight savings) When the system clock is tampered more than once (between 1 second to 30 days) during one power-up session of the Sentinel Key a The system clock is tampered for more than 30 days Cheat counter decrements by one. The AES/ECC algorithms are disabled—regardless of the cheat counter value. This prevents against multiple time tampering attempts during one power-up session. The AES/ECC algorithms are disabled—regardless of the cheat counter value. The application will run successfully till cheat counter has reached zero. After which, the AES/ECC algorithms are disabled and the associated API functions return error. You can decide the behavior of the application under such circumstances. If the Sentinel Key is re-plugged, normal functionality can be resumed. If the system clock is corrected, normal functionality can be resumed. If the system clock is corrected, normal functionality can be resumed. a. Refers to the duration between the plug-in and plug-out of the Sentinel Key.
Tips and Tricks Attack the Application Tips and Tricks Contents Glossary Index Troubleshooting Since most software developers do not write security code everyday, this is often the easiest target. Since a poorly protected application may only require a few quick changes to operate without the Sentinel Key attached, hackers might try code patching or fake the application components. Fortunately, by using many of the tips in this chapter this can also be made extremely difficult. The remaining chapter discusses such methods. We have provided many tips and tricks you can implement in your application. Each tip protects against specific type of attack—and multiple methods will complement each other. Use CodeCover to Encrypt Your Executable (For Windows) For Windows applications, you can combine your API elements-based custom protection with CodeCover and add an extra layer of protection. The CodeCover encrypts your final executable, which makes it difficult to disassemble or debug your application. Even if the attacker manages to overcome the difficult task of removing the CodeCover, the application inside is still protected—due to two strong layers of protection. Use CodeCover SDK CodeCover SDK provides run-time protection by making use of obfuscation and encryption. It also binds the original application to the CodeCover module. This ensures that if an attempt is made to recreate the application after removing the CodeCover protection, the application does not execute successfully. This is because decryption and obfuscation are dependent on the CodeCover module for execution. Sentinel Hardware Keys Developer’s Guide 171
Page 2 and 3:
Copyright © 2009, SafeNet, Inc. Al
Page 4 and 5:
Certifications European Community D
Page 6 and 7:
FCC Compliance FC Sentinel Hardware
Page 8 and 9:
Contents Sentinel Keys Server .....
Page 10 and 11:
Contents Sending Group Files to Dis
Page 12 and 13:
Contents xii Sentinel Hardware Keys
Page 14 and 15:
Conventions Used in This Guide You
Page 16 and 17:
Technical Support Technical Support
Page 18 and 19:
We Welcome Your Comments Export Con
Page 21 and 22:
Chapter 1 Introduction In this chap
Page 23 and 24:
Sentinel Keys Protect Against Softw
Page 25 and 26:
Sentinel Keys Offer Sophisticated P
Page 27 and 28:
Sentinel Keys Offer Sophisticated P
Page 29 and 30:
The Business Layer API Functions Se
Page 31 and 32:
Programming Utility Sentinel Keys T
Page 33 and 34:
Frequently Asked Questions Contents
Page 35 and 36:
Page 37 and 38:
Chapter 2 Sentinel Hardware Keys SD
Page 39 and 40:
Compiler Interfaces Sentinel Keys L
Page 41 and 42:
Distributor Key Distributor Key Con
Page 43 and 44:
Sentinel Keys Contents Glossary Ind
Page 45 and 46:
Sentinel Keys Contents Glossary Ind
Page 47 and 48:
Sentinel Keys Server Contents Gloss
Page 49 and 50:
Sentinel System Driver Sentinel Sys
Page 51 and 52:
Backward-compatibility Information
Page 53 and 54:
Command-Line CodeCover Utility Cont
Page 55 and 56:
Key Programming APIs Contents Gloss
Page 57 and 58:
GCC a For Linux Compiler/Environmen
Page 59 and 60:
Sentinel Keys License Monitor Conte
Page 61 and 62:
Sentinel Protection Installer Conte
Page 63 and 64:
Secure Update API Frequently Asked
Page 65 and 66:
authentication.) Frequently Asked Q
Page 67 and 68:
Page 69 and 70:
Chapter 3 Planning Application Prot
Page 71 and 72:
About Features, Templates, and Grou
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
Planning Application Protection and
Page 81 and 82:
Page 83 and 84:
Enabling License Sharing Planning A
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91:
Part 2 Designing and Implementing P
Page 94 and 95:
Chapter 4 - Protecting Applications
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139: Chapter 5 - Protecting Applications
Page 156 and 157: Chapter 6 - Secure Remote Updates C
Page 186 and 187: Chapter 7 - Implementing Secure Lic
Page 205 and 206: Chapter 8 License Grouping This cha
Page 207 and 208: Creating New Groups To create a new
Page 209 and 210: Duplicating Groups Sending Group Fi
Page 211 and 212: Creating New Feature Instances Cont
Page 213 and 214: Export-File Manager Export-File Man
Page 215 and 216: For a Loaded Group Frequently Asked
Page 217 and 218: Update Existing Licensing Values Fr
Page 219 and 220: Stand-alone License Manager Frequen
Page 221 and 222: Chapter 9 Programming Sentinel Hard
Page 223 and 224: Programming Sentinel Keys using Sen
Page 225 and 226: To create an .wps file: Programming
Page 227 and 228: Programming Sentinel Keys using the
Page 229 and 230: Programming Sentinel Keys using the
Page 231 and 232: Frequently Asked Questions Contents
Page 233 and 234: Utility/Executable developed out of
Page 239:
Part 4 Distributing Protected Appli
Page 242 and 243:
Chapter 10 - Redistributables for C
Page 244 and 245:
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Page 254 and 255:
Page 256 and 257:
Page 258 and 259:
Page 260 and 261:
Page 262 and 263:
Appendix A - Troubleshooting Conten
Page 264 and 265:
Page 266 and 267:
Page 268 and 269:
Page 270 and 271:
Page 272 and 273:
Page 274 and 275:
Page 276 and 277:
Appendix B - Glossary Contents Glos
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
Page 292 and 293:
Page 294 and 295:
Page 296 and 297:
Appendix C - Sentinel Keys Hardware
Page 298 and 299:
Appendix D - Migration from SuperPr
Page 300 and 301:
Appendix D - Migration from SuperPr
Page 302 and 303:
Index Contents Glossary Index Troub
Page 304:
Index Contents Glossary Index Troub
show all

Sentinel Hardware Keys Developer's Guide - Customer Connection ...

Create successful ePaper yourself

Delete template?

Save as template?