简体繁体 English

保护Web服务中的业务逻辑

[英]Protecting business logic in webservices

原文 2010-05-08 21:44:39 3 3 c#/ asp.net/ security/ web-services/ business-logic

Is there a way that a hacker or someone who wants to copy my software logic, can reverse engineer the business logic that I have in a webservice? 黑客或想要复制我的软件逻辑的人是否可以对我在Web服务中拥有的业务逻辑进行反向工程？

Is there a way to protect such information? 有没有办法保护这些信息？

My development platform in .net asp.net and C# 我在.net asp.net和C＃中的开发平台

3 个解决方案

A user of the web service use only the interface and not binary part of your web service. Web服务的用户仅使用界面，而不使用Web服务的二进制部分。 If your web server not safe enough you can place your business logic to the other server on your internal network which is connected through the second network card. 如果您的Web服务器不够安全，则可以将业务逻辑放置在内部网络中通过第二个网卡连接的另一台服务器上。

Binary deployed executables can always be reverse engineered, but the effort to reverse engineer code could be increased by an obscurator. 二进制部署的可执行文件始终可以进行逆向工程，但是混淆器可能会增加逆向工程代码的工作量。

Here is an example tool: http://www.preemptive.com/products/dotfuscator 这是一个示例工具： http : //www.preemptive.com/products/dotfuscator

There are always ways for a hacker or the user of a webservice to get access to the binary. 黑客或Web服务的用户总是有方法来访问二进制文件。 Here I define the user as the individual you sell your solution to. 在这里，我将用户定义为向其出售解决方案的个人。

A webservice client does not have access to the code unless the server is compromised. 除非服务器受到威胁，否则Web服务客户端无法访问代码。

Only if the hacker is somehow able to gain read permission to the bin folder on your web server will they be able to pull down the binary file and reverse engineer it. 只有黑客能够以某种方式获得对Web服务器上bin文件夹的读取许可，他们才能拉下二进制文件并对其进行反向工程。 I agree with Oleg's answer in that if you are really worried about securing the biz logic you should put it on a seperate server and access it through a seperate internal network. 我同意Oleg的回答，即如果您真的担心保护biz逻辑，则应将其放在单独的服务器上并通过单独的内部网络进行访问。