LimeLM - does it require constant internet?

Hi, a few questions regarding LimeLM:

As I understand LimeLM, it requires online activation but the product then runs without internet connection, is this right? (otherwise it would be quite impractical to require all the users to be online anytime they use the licensed product).

What protection scheme are you using to prevent users from (more or less simply) sharing the "I am an activated copy" information that is stored on the activated computer? - be it a file or a registry entry.

On what level would you classify the LimeLM protection?What kind attacks does LimeLM prevent? (aside from decompiling the assemblies and recompiling without the protection)

How do you handle a simple "let's get an unlimited trial" by reinstalling the trial version multiple times on the same computer? (with more or less effort, either with some inspection where the application is storing the trial data or without)- in other words, what kind of storage media are you using to store and protect the trial/activated information?

Sorry for the bad subject, I have submitted the form a little too early and I have no idea how to edit my existing post 🙂

As I understand LimeLM, it requires online activation but the product then runs without internet connection, is this right? (otherwise it would be quite impractical to require all the users to be online anytime they use the licensed product).

That's correct.

What protection scheme are you using to prevent users from (more or less simply) sharing the "I am an activated copy" information that is stored on the activated computer? - be it a file or a registry entry.

The activation data is hardware locked. To put it simply TurboActivate (the activation components that connect to LimeLM) generate a unqiue hardware ID for the computer. When the user activates this hardware id along with the product key are signed by our servers and sent back to the user. This signed block of data secured using 2048-bit asymmetric cryptography (e.g. Public/Private key protection).

In layman's terms this means even if the user finds the files & registry entries needed to form a complete activation they won't be able to use it on any other computer.

On what level would you classify the LimeLM protection?What kind attacks does LimeLM prevent? (aside from decompiling the assemblies and recompiling without the protection)

LimeLM is a online activation product to prevent casual piracy, and add strong licensing to your application. And unlike most other activation product we work hard to ensure all the parts are simple for the user.

As far as protection goes we have several layers. Preventing decompilation is only one such layer. There are others which I won't talk about here (as to not aid would-be crackers).

If TurboActivate does get cracked we will provide fixed versions in a timely manner. Even though our protection hasn't been cracked yet, it is an arms race. All protection (no matter how complicated or clever) can be cracked. Our job is to respond quickly to these attempts and release fixed versions.

We worry about the protection so you can build & sell your app.

How do you handle a simple "let's get an unlimited trial" by reinstalling the trial version multiple times on the same computer? (with more or less effort, either with some inspection where the application is storing the trial data or without)- in other words, what kind of storage media are you using to store and protect the trial/activated information?

Again, I'll avoid going into the specifics. But re-installing the multiple versions won't get the user an extended trial. We use a multi-file & registry approach. And we're currently adding more protection mechanisms into the trial functionality in TurboActivate.

Is it uncrackable? No. Is it such a pain to crack that most sensible users won't bother: yes. Again, if the trial functionality does get cracked we'll respond by providing better protection. This is what you pay us for.

Thank you for your answers and patience with my numerous questions 🙂

I understand that nothing is uncrackable, I am just trying to evaluate whether to replace our custom made online activation protection scheme with something better because the day that our product will get cracked will surely come sooner or later.

Thank you for your answers and patience with my numerous questions 🙂

It's no problem at all. If you have any more questions don't be afraid to ask.