Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Encryption / Security of Source Code
#1
I am currently thinking about deployment of our PPMAC systems. We do not want users to have access to the project files on the PPMAC for 3 reasons

1) Safety. The code controls machinery and uneducated alterations could make the machinery unsafe.

2) Commercial. The code allows certain features if a particular customer has purchased the features. This could be altered and enabled without payment.

3) Intellectual Property. We do not want to give away any of our IP.

I assume we can lock out the IDE from customers by changing the login password.

However, I see by simply plugging in a mini/micro USB lead to the mezzanine board you get read-write access to /opt folder and hence the code. I know c programs are compiled files but there is a lot of information in the pmh files and plcs.

Also any upgrades we send on Recovery Disk USB sticks is currently unencrypted as far as I can tell.

Is it possible to protect our system and upgrade procedure?

Thanks
Dave
Reply
#2
(11-26-2012, 10:12 AM)daves Wrote: I am currently thinking about deployment of our PPMAC systems. We do not want users to have access to the project files on the PPMAC for 3 reasons

1) Safety. The code controls machinery and uneducated alterations could make the machinery unsafe.

2) Commercial. The code allows certain features if a particular customer has purchased the features. This could be altered and enabled without payment.

3) Intellectual Property. We do not want to give away any of our IP.

I assume we can lock out the IDE from customers by changing the login password.

However, I see by simply plugging in a mini/micro USB lead to the mezzanine board you get read-write access to /opt folder and hence the code. I know c programs are compiled files but there is a lot of information in the pmh files and plcs.

Also any upgrades we send on Recovery Disk USB sticks is currently unencrypted as far as I can tell.

Is it possible to protect our system and upgrade procedure?

Thanks
Dave

Hi Dave,
Thanks for the post. We are actively working to implement encryption for the powerpmac project. We will have this feature available in the next release that is beginning of the next year.
We understand the importance of protecting IP.
If you want you can be our beta tester for the next release.
Thanks,
Atul
Reply
#3
Hi Atul
Thanks for the reply. That is good news. I would be happy to participate in beta testing.
Dave
Reply
#4
(11-29-2012, 01:30 AM)daves Wrote: Hi Atul
Thanks for the reply. That is good news. I would be happy to participate in beta testing.
Dave

How's progress on security? (and a beta release?)

We have just released our first PPMAC system to a customer. We are still very concerned about security for the three reasons mentioned last year.

I'm generally unhappy with any access and the ability to mess up the project and also specifically:

* I am not happy about access to Global Includes pmh files revealing variable definition, and pp_proj.h where a person could see "CustomerHasPaidFeature=100". With this info you could run gpascii and type "M100=1"

* Also access to the pp_save.cfg file where we would have saved M100=0 for a customer which they could change.

* All of the PMAC Script Language directory is open to abuse.

Really the whole file system needs to be encrypted. We hope to soon be releasing systems to other customers (different customers inspire different levels of trust...)

Dave
Reply
#5
Any security update yet?

We are getting closer to more customer releases of PPMAC and this is a great concern.

Also I spot some people are testing a 1.6 IDE, any news on a release or the promised beta? we have been through a number of VS IDE shell releases since the 1.5 IDE I am using
Reply
#6
(09-13-2013, 06:41 AM)daves Wrote: Any security update yet?

We are getting closer to more customer releases of PPMAC and this is a great concern.

Also I spot some people are testing a 1.6 IDE, any news on a release or the promised beta? we have been through a number of VS IDE shell releases since the 1.5 IDE I am using

Hi Dave,
The IDE that I am using along with some of our international offices does include encryption. We are testing it. I will update you as soon as I feel comfortable with testing. If you want to be a beta tester I will be glad to give you the IDE.
Atul
Reply
#7
Thanks Atul, that is great news. Please let me know how to get hold of the beta... Dave
Reply
#8
Dear all,
I need to use the encryption option on some projects.
Is there a way to forbid the commands that show the script code lines like the "list" command ?

Thank you,
Anthony
Reply
#9
(09-05-2018, 02:00 AM)AnthonyLH Wrote: Dear all,
I need to use the encryption option on some projects.
Is there a way to forbid the commands that show the script code lines like the "list" command ?

Thank you,
Anthony

This has been in the firmware for some time now.
Reply
#10
Yes, sorry, i did the test again today and go the message "error#27: Program encrypted.."
So perfect! I must have missed a step on the last test.
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)