How to create a unique license key for my access database

[VBANewBie :)]

Hello everyone , I have a program which I need to distribute and need a way to create a unique license key for each device , What I have done so far is :

1. I made a form in the db which pull HDD serial and CPU serial then combine them in one string with separator then encrypt the string using XOR method and put the encrypted text in a textbox visible to the user .
2. The next step is to receive that string from the user and decrypt on my device and split it to get the vital data for license (HDD & CPU) .
3. the third step which I'm missing that I need to do something with the data then encrypt it again to send back .
4. The final step , The user receive the product key and put it in another textbox , The form will decrypt then check (I don't know what to check for !) then activate the program if the product turned to be valid by inserting the cpu and hdd serial in a table .

Am I on the right path ? Or is there any better way ? .. Any help appreciated
Thanks

 

[The_Doc_Man]

You are using a method that others have tried with varying success. Search this forum for the topic "License Key" and look in the "Similar thread" heading below the main thread because you might find many other articles on the subject.

The tricky part of this is your 3rd/4th step where you supply something to become part of the proposed license key. Anything that you supply here runs into the problem that when you decrypt the key, the elements you supplied would be visible so that if someone actually DID hack in, they would be able to see what you did. That defeats the intent of the encryption.

I believe the more successful methods don't involve actually encrypting something to be decrypted, but rather use the idea of a hashed key where you don't actually decrypt anything. You merely regenerate the hash and compare it to the key hash. And there, the trick is to NOT store the extra hashing parameters in the DB, but rather have your installation process put the key factors in some obscure place.

 

[VBANewBie :)]

You are using a method that others have tried with varying success. Search this forum for the topic "License Key" and look in the "Similar thread" heading below the main thread because you might find many other articles on the subject.

The tricky part of this is your 3rd/4th step where you supply something to become part of the proposed license key. Anything that you supply here runs into the problem that when you decrypt the key, the elements you supplied would be visible so that if someone actually DID hack in, they would be able to see what you did. That defeats the intent of the encryption.

I believe the more successful methods don't involve actually encrypting something to be decrypted, but rather use the idea of a hashed key where you don't actually decrypt anything. You merely regenerate the hash and compare it to the key hash. And there, the trick is to NOT store the extra hashing parameters in the DB, but rather have your installation process put the key factors in some obscure place.

Thanks for advice , Your help is deeply appreciated .

 

[theDBguy]

Generating and using license keys can be as complicated or as simple as you would like it to be. You have decided to combine both HDD and CPU info and wondering how to use them. One idea is to use the customer's personal information as well. For example, when you receive the HDD and CPU information from the user, you can combine it with their email address. When you send the result back to them, your program/application can use the info from the registration or settings table or even prompt them for the info you're looking for to verify their license key. Just a thought...