On Software Protection...

[Teddy Rogers]

I was just having a look around the net and came across this short and unfinished article by Jeremy Collake:

In it software protection is described and the ideal requirements of a software protection scheme are enumerated and elaborated on.

http://www.bitsum.com/prot.asp

I don't agree with the part about carding...

Ted.

[Ehtyar]

He seems to have ignored a lot of his own crap in that article. I wonder if he's aware of the multiple unpecompacts available...

[Teddy Rogers]

You have a point but even from the outset Jeremy always stated that PeCompact was only ever meant to be a packer and not a protector. After he said all that it seemed strange that he then went on to implement API redirection, the IsPacked API check and also encrypted string markers. I think he did have intentions on creating a new protector and as such those features were a stepping stone to it. I am not sure if he still has ideas on doing this, it was quite a long time ago...

Ted.

[Ehtyar]

That was mostly my point right there, and especially with that retail plugin advanced anti-debug or whatever..i'd like to get my hands on that.

[cond0lence]

And to describe it with Jeremy's own words:

It is important for people to realize that protection is a trade-off. The more secure your software, the less efficiently it will load and the less compressed it will end up. Furthermore, as I mentioned before, protection schemes are usually inveresely proportional in security and platform (and software environment) compatibility.

http://www.bitsum.com/smf/index.php?topic=240.0

The supported AntiDebug Loader is a non-standard feature for example,

but Pec2 will never support a hard protection (like teddy said it was meant to be a packer).

I don't think Jeremy ever change his way, because he cares about the right essential things.