RE: Securing the Database Structure

Coming from the perspective of one who has needed to get to a DB structure of a purchased app, you might have some luck using obfuscation. Ever try to reverse engineer an 800-table schema with no RI? It can be done (we've done it), but with the help of the app source.

One other 3rd-party app has implemented some of Oracle's object types and such in 8i, and the schemas don't seem to be able to be successfully exp/imp'd. Then again, I didn't try that hard...

Rich

Rich Jesse                           System/Database Administrator
rjesse_at_qtiworld.com                  Quad/Tech Inc, Sussex, WI USA

> -----Original Message-----
> From: Hussain Ahmed Qadri [mailto:hussain_at_skm.org.pk]
> Sent: Wednesday, July 23, 2003 9:54 AM
> To: Multiple recipients of list ORACLE-L
> Subject: Securing the Database Structure
>
>
> Hi all,
> When you develop a software and you intend to sell it, are
> there any ways of saving your database structure. Because
> obviously we don't give the fmb's, we only give the
> executable. But to run the software we need to have the
> database and there are ways by which the database structure
> can be seen, imp/exp is an example for one. I know by getting
> the database structure it would be very difficult to
> interpret the system, but structure is the core of the whole
> thing. So I wanted to ask what are the steps that are
> followed when you are packaging your software to sell and
> what are the security measures to protect your application,
> forms, database structures, etc.
> Plus any good method/utility to encrypt the contents of a
> batch file but at the same time allowing it to be executed.
>
Received on Wed Jul 23 2003 - 10:49:51 CDT