Results 1 to 2 of 2

Thread: Cliënt - Server connection

  1. Nov 6th, 2009, 10:56 AM #1
    gonzalioz
    gonzalioz is offline

    Thread Starter
    Hyperactive Member gonzalioz's Avatar
    Join Date
    Sep 2009
    Location
    <body></body>
    Posts
    508

    Cliënt - Server connection

    Hi,

    Don't know if this is exactly the right board for this, but here it goes:

    I have to make an app that users install on there pc once and from then on certain data can be obtained from a database (doesn't matter what) without the user having to type some password or something.

    This is my idea:

    First time installation:
    1. Cli&#235;nt starts setup.exe
    2. Cli&#235;nt types in username and password
    3. Webservice checks username and password
    4. If correct, webservice returns a KEY and a UserID
    5. Cli&#235;nt stores this key and UserID into the register
    Installation done


    Run App:
    1. Cli&#235;nt starts application
    2. Cli&#235;nt app sends userID to webservice
    3. Webservice encrypts a number (75 for example) with the key that belongs to this user and sends this back.
    4. Cli&#235;nt app decrypts the number with his key and sends the decrypted number back to the webservice.
    5. The webservice checks if the number that is returned is equal to the number he send.
    6. If so, cli&#235;nt app has access...


    Using this method, the cli&#235;nt only has to give his username and password once and from then on can use the application from anywhere without constantly logging in or something.

    Problem is, I could make some simple key. Like x12342134 or -13414312 but this is not really safe.
    Who knows of a relativly simple but still quite easy algorithm which I can write in vb.net to use to encrypt the number?


    [EDIT] Or maybe it's a good idea to just just some kind of formula like: number * 1231 / 2342 - 234234 * 12312 + 34124
    * 1231 / 2342 - 234234 * 12312 + 34124 would then be the "KEY" of a user.
    Last edited by gonzalioz; Nov 6th, 2009 at 11:01 AM.
    -Gonzalioz
    Home and Learn VB.Net Tutorial
    Reply With Quote Reply With Quote
  2. Nov 6th, 2009, 11:03 AM #2
    chris128
    chris128 is offline
    Pro Grammar chris128's Avatar
    Join Date
    Jun 2007
    Location
    England
    Posts
    7,604

    Re: Cliënt - Server connection

    One thing you have to remember with .NET is that no matter how strong your encryption algorithm is, someone can just dissasemble your program using something like Reflector and see pretty much all of your source code so they can easily reverse or copy the algorithm. The only way to TRY to prevent this is to use an 'obfuscation' program to encrypt your source code but as many people will tell you - this just makes it a bit harder for someone to view your code, not impossible.
    My free .NET Windows API library (Version 2.2 Released 12/06/2011)

    Blog: cjwdev.wordpress.com
    Web: www.cjwdev.co.uk

    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


Click Here to Expand Forum to Full Width