Sentinel Hardware Keys Developer's Guide - Customer Connection ...

More documents

Recommendations

Info

Chapter 7 – Implementing Secure Licensing Contents Glossary Index Troubleshooting Note: Use floating values for comparison. Instead of using only the SP_SUCCESS decimal value for comparing the API return codes, you may add floating point values (like 1.5) to it. This provides more security against reverse engineering of the assembly code. If the correct key is attached, the variable will contain the proper value. In actual practice, this technique is most effective if the mathematics behind the correct value is more complicated than simple addition. Checksum Your Code 180 Sentinel Hardware Keys Developer’s Guide You should adopt the practice of making a checksum of your critical data. You should also verify the validity of the application and any DLLs or shared libraries that it uses. This helps detect if the code or data has been modified and identify when your application has been tampered. Dealing With Missing Sentinel Keys If no Sentinel Key is attached to the computer or in network when a protected application is run, an error is returned by the SFNTGetLicense API function. If a connection is established, but the key is later removed, subsequent API functions will return errors. Refer to the Business Layer API Help for exact status codes. If your application detects that the Sentinel Key is not present, it is up to you to decide what action you want to take. Typically, you should not shut down your application because of a single unexpected response. Instead, repeat your query; if the response is still wrong, then you can take action. Possible actions include: Display a message and wait for the user to respond. This method does not prevent users from running the application, but it makes doing so extremely annoying, especially if the application queries the hardware key frequently. Shut down the application after a predetermined number of failed queries. (However, only under the most extraordinary circumstances
Tips and Tricks Contents Glossary Index Troubleshooting should you terminate your application without allowing the users to first save their work). Allow the application to appear as if it is functioning properly, while in fact it is not. (Be very careful if you use this method; less drastic actions should be considered first.) Display a critical error message and tell the user to contact your technical support department. These are just some suggested actions; you can implement any combination of them to suit your needs. Remember, other events, such as network transmission errors can also cause your application to detect a hardware key problem. Since these are almost always innocent events, you should design your strategy to be as forgiving of them as possible, while still maintaining protection integrity. Change your Strategy Finally, as you perform software updates to your application in the field, devote time to change and improve your security checks. The longer the checks exist in the field, the more time there is to attack the mechanism. Eventually, even the toughest checks might be overcome. However, if you continually update your checks, then you can stay one step ahead. Consider this action part of a planned maintenance to keep your security at its peak level. Note: For more personalized assistance in integrating the security checks in your application, please contact our Technical Support using the information given on page xvi. Sentinel Hardware Keys Developer’s Guide 181
Page 2 and 3:
Copyright © 2009, SafeNet, Inc. Al
Page 4 and 5:
Certifications European Community D
Page 6 and 7:
FCC Compliance FC Sentinel Hardware
Page 8 and 9:
Contents Sentinel Keys Server .....
Page 10 and 11:
Contents Sending Group Files to Dis
Page 12 and 13:
Contents xii Sentinel Hardware Keys
Page 14 and 15:
Conventions Used in This Guide You
Page 16 and 17:
Technical Support Technical Support
Page 18 and 19:
We Welcome Your Comments Export Con
Page 21 and 22:
Chapter 1 Introduction In this chap
Page 23 and 24:
Sentinel Keys Protect Against Softw
Page 25 and 26:
Sentinel Keys Offer Sophisticated P
Page 27 and 28:
Sentinel Keys Offer Sophisticated P
Page 29 and 30:
The Business Layer API Functions Se
Page 31 and 32:
Programming Utility Sentinel Keys T
Page 33 and 34:
Frequently Asked Questions Contents
Page 35 and 36:
Page 37 and 38:
Chapter 2 Sentinel Hardware Keys SD
Page 39 and 40:
Compiler Interfaces Sentinel Keys L
Page 41 and 42:
Distributor Key Distributor Key Con
Page 43 and 44:
Sentinel Keys Contents Glossary Ind
Page 45 and 46:
Sentinel Keys Contents Glossary Ind
Page 47 and 48:
Sentinel Keys Server Contents Gloss
Page 49 and 50:
Sentinel System Driver Sentinel Sys
Page 51 and 52:
Backward-compatibility Information
Page 53 and 54:
Command-Line CodeCover Utility Cont
Page 55 and 56:
Key Programming APIs Contents Gloss
Page 57 and 58:
GCC a For Linux Compiler/Environmen
Page 59 and 60:
Sentinel Keys License Monitor Conte
Page 61 and 62:
Sentinel Protection Installer Conte
Page 63 and 64:
Secure Update API Frequently Asked
Page 65 and 66:
authentication.) Frequently Asked Q
Page 67 and 68:
Page 69 and 70:
Chapter 3 Planning Application Prot
Page 71 and 72:
About Features, Templates, and Grou
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
Planning Application Protection and
Page 81 and 82:
Page 83 and 84:
Enabling License Sharing Planning A
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91:
Part 2 Designing and Implementing P
Page 94 and 95:
Chapter 4 - Protecting Applications
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
Page 144 and 145:
Page 146 and 147:
Page 148 and 149: Chapter 5 - Protecting Applications
Page 156 and 157: Chapter 6 - Secure Remote Updates C
Page 186 and 187: Chapter 7 - Implementing Secure Lic
Page 205 and 206: Chapter 8 License Grouping This cha
Page 207 and 208: Creating New Groups To create a new
Page 209 and 210: Duplicating Groups Sending Group Fi
Page 211 and 212: Creating New Feature Instances Cont
Page 213 and 214: Export-File Manager Export-File Man
Page 215 and 216: For a Loaded Group Frequently Asked
Page 217 and 218: Update Existing Licensing Values Fr
Page 219 and 220: Stand-alone License Manager Frequen
Page 221 and 222: Chapter 9 Programming Sentinel Hard
Page 223 and 224: Programming Sentinel Keys using Sen
Page 225 and 226: To create an .wps file: Programming
Page 227 and 228: Programming Sentinel Keys using the
Page 229 and 230: Programming Sentinel Keys using the
Page 231 and 232: Frequently Asked Questions Contents
Page 233 and 234: Utility/Executable developed out of
Page 239: Part 4 Distributing Protected Appli
Page 242 and 243: Chapter 10 - Redistributables for C
Page 248 and 249:
Chapter 10 - Redistributables for C
Page 250 and 251:
Page 252 and 253:
Page 254 and 255:
Page 256 and 257:
Page 258 and 259:
Page 260 and 261:
Page 262 and 263:
Appendix A - Troubleshooting Conten
Page 264 and 265:
Page 266 and 267:
Page 268 and 269:
Page 270 and 271:
Page 272 and 273:
Page 274 and 275:
Page 276 and 277:
Appendix B - Glossary Contents Glos
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
Page 292 and 293:
Page 294 and 295:
Page 296 and 297:
Appendix C - Sentinel Keys Hardware
Page 298 and 299:
Appendix D - Migration from SuperPr
Page 300 and 301:
Appendix D - Migration from SuperPr
Page 302 and 303:
Index Contents Glossary Index Troub
Page 304:
Index Contents Glossary Index Troub
show all

Sentinel Hardware Keys Developer's Guide - Customer Connection ...

Create successful ePaper yourself

Delete template?

Save as template?