The encode| Encryption Active Server page technology provides application developers with intuitive, fast-based scripting
Fast and efficient application development means, greatly improve the development of the effect. But because ASP foot
This is the use of clear text (plain text) way to write, so the application developers hard to develop
Out of ASP applications, once released into the running environment, it is difficult to ensure that these
"Source code" will not be handed out. This creates how to effectively protect the development
Requirements for ASP Script source code.
ASP operating mechanism
ASP script is a series of specific syntax (currently supports VBScript and JScript two
scripting language), composed of scripts that mix with standard HTML pages
The file in this format. When the end user of the client uses a Web browser over the Internet
To access an ASP script based application, the Web browser will send a
HTTP request. When the Web server analyzes and determines that the request is an ASP script application,
The interpretation Run engine (ASP.DLL) of ASP scripts is invoked automatically through the ISAPI interface.
Asp. The DLL will get the specified ASP script file from the file system or internal buffer, and then
To do a grammar analysis and explain the implementation. The resulting processing results will be in HTML format
Content, return to Web browser via Web server "original path", Web browsing
The client forms the final result rendering. This completes a complete ASP script
Call. Several organic ASP script calls make up a complete ASP script that should be
Use.
Official encryption Program: from Microsoft free download to the Sce10chs.exe directly run can be completed
into the installation process. After installation, the Screnc.exe file is generated, which is a running
DOS promapt Command tool.
Run screnc–l VBScript source.asp destination.asp build contains ciphertext
New file for ASP script destination.asp with Notepad to see the ""
Inside, whether or not the annotation, has become unreadable ciphertext, but can not encrypt Chinese.
Several ASP source code protection methods:
1, "script minimized" that is, the ASP file only write as few source code, to achieve
The script portion of the business logic is encapsulated into a com/dcom component, and the ASP foot
The component is created in this, and the corresponding method (methed) is invoked. Application developer
The development of ASP script application can be developed before, or directly with ASP
Script to quickly develop a prototype system, for the need for protection, encryption, important script
Com/dcom components for redevelopment, implementation, and replacement.
2, "script encryption" i.e. ASP script is still developed directly by source code, but in
The script is encrypted before it is published to the runtime, as long as the encrypted ciphertext script
Posted out. This is the process of adding ciphertext restore to the ASP.DLL read script.
There are two ways to implement this idea: one is to develop an ISAPI IIS over
Filter (filter) block, before ASP.DLL (hook) to read ASP script files
In order to restore the ciphertext read by the file system into ASP.DLL which can be interpreted;
Method 29 provides support for ASP script encryption processing directly by ASP.DLL. Microsoft
This becomes Ms script in the new version of Vbscript.dll Jscript.dll encode
Technical support. This way, either the client's VBScript JScript (including the WSH foot
), or server-side VBScript JScript (that is, ASP scripts) can support
Encryption processing.
