Obfuscating a string in the source code

Asked

Viewed 258 times

-1

I need to hide a string in the source code of my program. Searching I found a programmer who hid the phrase "Hello World!" through a chain of if and loops tying everything to a array numerical.

The work can be seen here.

I ask, both work bring practical results or it is easily undone?

java security-guard obfuscation

  • Check this out: https://answall.com/q/158820/132

  • Did the answer resolve what was in doubt? Do you need something else to be improved? Do you think it is possible to accept it now?

1 answer

3

It depends. You want to hide it from a curious person and if you’re discovered it’s okay? Then it’s okay.

Do you want security anyway? Information can’t be discovered? So it doesn’t tickle. This is remarkably easy to obtain if you know how to do it. You don’t even need to understand math or spend time finding a logic in it. It’s more work to "protect" than to unprotect.

Security is a difficult thing and usually only done right by experts, which is rare to find and even these make mistakes. Of course there are some rules that can be followed for the basics and this means delegating almost everything to something proven and giving little or no physical access to the information you want to protect.

  • I know questions like these are common, but the answers are always inaccurate. There are times when there is no way to avoid adding a secret data in the middle of the source code and it will usually be present in the form of a string. Protecting a variable in memory seems easier than something totally present in the code. Many obfuscators promise to hide strings as well, but they don’t really do much more than the example I gave. Unfortunately I see that there is no effective solution, I will only have a false sense of security.

  • 1

    If the question is not accurate, you will not get accurate answers. I don’t know anyone who had to put a secret data in the code. I know a lot of people who choose to, but it’s different than needing.

  • For example, a public key to keep a secure connection to a server. Although public keys are not something to be kept in total secrecy, let’s assume that the user finds it in the code, replace it with a key of its own and now knows how my program communicates with the server.

  • 3

    Public keys, as the name says, should be public, protect it makes no sense.

Browser other questions tagged java security-guard obfuscation

You are not signed in. Login or sign up in order to post.