SafeNet’s Third-Generation Sentinel® Envelope Ensures Code Integrity and Delivers Superior Application Security
Enhanced Security Measures Protect Intellectual Property from Reverse Engineering and Software Piracy Attacks
April 09, 2013
Software monetization leader, SafeNet, Inc. today announced the availability of its third-generation Sentinel Envelope technology, which helps software developers protect code integrity, deliver strong application security, and, at the same time, reduce deployment delays and overhead costs.
As software publishers try to balance how best to prevent misuse of their software without creating unnecessary obstacles for legitimately paying customers, Sentinel Envelope works with Sentinel LDK, the company’s out-of-the-box
software protection, licensing, and entitlement management system, to help them protect their software and intellectual property (IP) while minimizing disruption and maximizing profitability.
Sentinel Envelope achieves this by providing software developers with superior application protection, including an automatic file packer (i.e., wrapper) that employs SafeNet’s advanced file encryption, code obfuscation, and anti-debugging technologies. The Sentinel Envelope also creates a robust shield that wraps executable files and dynamically linked libraries (DLLs) and binds applications to hardware- or software-based protection keys, enabling customers to more effectively enforce copy protection, protect trade secrets, professional know-how, and IP from reverse engineering, tampering, and piracy.
"Protecting hard-earned trade secrets and intellectual capital is critical for ISVs to remain competitive and relevant in the market,"" said Jake Fox, vice president, product management, Software Monetization, SafeNet. “The third generation of LDK Envelope technology takes software protection to the next level. LDK Envelope makes it extremely difficult for hackers to reverse engineer protected intellectual property. By implementing strong application security, software vendors can confidently maintain their competitive advantage.”
The Sentinel Envelope introduces innovative new features for both its 32- and 64-bit engine, including import table gating, OEP (original entry point) obfuscation, constant runtime debugging protection, improved real-time anti-debugging and anti-tracing capabilities, and what is believed to be the industry’s first and only file packer utilizing a white-box-based secure channel that protects the secure channel encryption key from dynamic or static extraction from protected binaries. All of the features in Sentinel Envelope combine to provide software vendors with enhanced copy protection and prevention of modification and tampering.
The third-generation enhancements to the Sentinel Envelope include:
Enhanced security protection for 32- and 64-bit architectures— b locks the reconstruction of protected binaries from attacks based on memory dumping.
White-box-based secure communication channel— utilizes vendor-specific components to ensure that the secure channel encryption key cannot be dynamically or statically extracted from the protected binaries. This is the first solution of its kind in the industry.
Import address table obfuscation and gating— removes the import address table (IAT) and scatters its information inside the Envelope code, including the original entry point (OEP). Calls for imported system functions are also redirected via import gates for all known system DLLs.
Constant runtime-debugging protection— enhances user-mode debugger detection on running processes that hardens the software against tracing techniques and confuses hackers with delayed responses, misleading commands, and false information.
User-mode software-based licenses— provides “user-mode” licenses that do not require installation of the runtime environment, enabling faster, easier, and lower overhead installations, regardless of administrative rights.
These enhancements make Sentinel LDK’s Envelope technology one of the most secure application security solutions on the market today. They will enable software vendors to more easily protect access and use of their applications, ensure product and brand integrity, combat competitive espionage, and safeguard revenue streams.
"Rigorously protecting intellectual property from theft, reverse engineering, and tampering is critical for software vendors in today’s ultra-competitive environment," continued Jake Fox. "Strong security is one of the cornerstones of an effective software monetization strategy, and the Sentinel LDK Envelope delivers cutting-edge code encryption and counter-hacking techniques to protect valuable IP from persistent, intelligent threats."
Learn more about
Sentinel Licensing Development Kit (LDK) .
Learn more about
Sentinel Envelope .
Learn more about the
four aspects of a comprehensive software monetization strategy .
LicensingLive! Software Monetization Community.
Follow SafeNet on
YouTube , and
About SafeNet Software Monetization Solutions
SafeNet has more than 25 years of experience in delivering innovative and reliable software licensing and entitlement management solutions to software publishers, technology vendors, and cloud service providers worldwide.
Easy to integrate and use, innovative, and feature focused, the company’s family of
Sentinel Software Monetization Solutions are designed to meet the unique license enablement, enforcement, and management requirements of any organization, regardless of size, technical requirements, or organizational structure. SafeNet clients are able to address each and every aspect of the software monetization lifecycle—from copy and intellectual property protection to product catalog management and ongoing end-user experience improvement. With a proven history of adapting to new requirements and introducing new technologies to address evolving market conditions, SafeNet’s more than 25,000 customers around the globe know that by choosing Sentinel, they choose the freedom to evolve how they do business today, tomorrow, and beyond.