java exe wrapping... does it protect the code from decompilation?

Thread view:

tiewknvc9 - 05 Oct 2006 15:50 GMT

Hi!

Im trying to figure out if using a program that generates an exe while
wrapping my jar file inside it, would actually protect my code (without
obfuscation) from potential hackers with decompilers.

While I am aware that exe's can be decompiled, although very difficult
to read, I dont know if wrapping my jar in an exe would actually add
enough security...

Im referring to something like jsmooth...

Thanks for your feedback

Reply to this Message

Oliver Wong - 05 Oct 2006 16:19 GMT

> Hi!
>
[quoted text clipped - 9 lines]
>
> Thanks for your feedback

Depends on the implementation. It's possible all the EXE does is
extracts the JAR and executes it, and deletes the JAR once the program
finishes. If so, it's possible for the hacker to just stop the program
before the delete occurs, and thus gain access to the JAR.

- Oliver

Reply to this Message

victor at sevencoins dot com - 09 Oct 2006 07:31 GMT

I use NativeJ (http://www.dobysoft.com/products/nativej/) and asked the author
this question quite a while back. His reply might be helpful to you:

>> Is it possible for my malicious client to find that (extracted) jar
>> file and having any chance to decompile it?
>
> The embedded JAR feature is _not_ a security feature! You should look
> into byte-code obfuscators (eg. ProGuard - proguard.sourceforge.net) if
> you want to prevent third parties from decompiling your JAR files.

Cheers.

> Hi!
>
[quoted text clipped - 9 lines]
>
> Thanks for your feedback

Reply to this Message

java exe wrapping... does it protect the code from decompilation?

Free Magazines