class library and security in dotnet technology

Question

suppose i have developed class library and i want the i can use this library in my project only but if someone try to copy the dll file and want to use it in his project then he will not be able to do so. so i just want to know how could embed this type of security in the dll file...please tell me all ways. thanks

Answer 1

Check the signature of the calling assembly and sign the assembly you are calling the dll from. Then sign the dll.

Answer 2

You could verify in your assembly the PublicKeyToken of the calling signed assembly.

• How to: Sign an Assembly with a Strong Name
• Getting an Assembly's Public Key the Programmatic way

The second example is in VB.NET, couldn't find a C# version readily but you'll get the idea.

Be aware that this is not an absolutly secure way, because someone could still decompile your assembly. But if it's just to prevent that your library is used in other projects, this might be an acceptable way.

Answer 3

Not secure but much harder to abuse: You can integrate the dll into your main exe or web.dll using

• ILMerge to Merge them together or
• embed your application’s dependent DLLs as a resource inside your EXE file

Answer 4

You could invoke a licensing technology when the library was to be instantiated. What I've done in the past is include a public key as a resource to the dll, and then look for a license xml document with a cryptographic signature signed with my private key. As long as I keep close track of my private key, it's pretty difficult to defeat.

Having said that, .Net is eminently decompilable - be sure and obfuscate it with a tool like Dotfuscator.