Function library for SG4: how secure?

blitzamit · ‎11-18-2011

Hi all,

I want to distribute a function library (.lib or .o) to one of our clients. I wish to know if it is possible to extract source code from such a libray, In short, how secure is such a library?

I am interested only in knowing if it possible to extract source code, not in knowing how to do it

Thanks in advance,

rocco · ‎11-18-2011

Hi Blitzamit,

It depends on what you mean by "source code". If you mean the original source code, with labels, variable names and comments, then no. That information is not included in the library.

But if you mean a source code file that can then be modified and recompiled, then yes. Modules in the library can be "disassembled" into code that is somewhat readable. The only symbols that would be accessible are those that were XDEFed or XREFed in your original source, so the code may not be easy to understand. Depending on the complexity, the underlying algorithms could be derived.

View solution in original post

rocco · ‎11-18-2011

Hi Blitzamit,

It depends on what you mean by "source code". If you mean the original source code, with labels, variable names and comments, then no. That information is not included in the library.

But if you mean a source code file that can then be modified and recompiled, then yes. Modules in the library can be "disassembled" into code that is somewhat readable. The only symbols that would be accessible are those that were XDEFed or XREFed in your original source, so the code may not be easy to understand. Depending on the complexity, the underlying algorithms could be derived.

Function library for SG4: how secure?

Function library for SG4: how secure?

General