How to hide keys in application?
Posted
by
WilliamKF
on Stack Overflow
See other posts from Stack Overflow
or by WilliamKF
Published on 2010-12-31T22:13:36Z
Indexed on
2010/12/31
22:54 UTC
Read the original article
Hit count: 226
I have a C++ client/server application where the client and server are my executable. Each time a connection is made between the client and server, I generate a new encryption key for that session and I wish to transmit this session key and encrypt this session key using a static key that is built into both the client and server.
However, running strings on my executable reveals the static key.
How can I hide the embedded static key in my client and server application so that they are not easily extracted and thus allowing someone to decode my session key.
© Stack Overflow or respective owner