When we compared Active Server Pages with Java Servlets, one of the
advantages of Java was that it was compiled and thus 'unreadable' (our
Java server application is installaed at our customers sites and we don't
want our customers to read the source of our application).
Now what worries me, is that it seems to be possible to decompile java
classes into java sources again (Mocha, ...).
Now my questions : What is the best way to protect yourself from
decompiling java classes (by our customers) ?
Use an obfuscator (like Obfuscate Pro) that makes the source itself
unreadable ?
Use Crema (from the writer of Mocha) ?
Someone else also suggested to write my own class loader or to sign my
Java jars.
Anyone else suggestions ?