I'm building a software using SDK provided by third party software. To secure the application that I build, I must set correct values in some attributes in the SDK. I'm thinking of building a wrapper around SDK which would ensure correct properties in the SDK are set. Only challenge with the approach is making sure other developers helping me to build the application would always use the wrapper as an abstraction layer rather than using the SDK directly downloaded from third-party repository.
I was initially thinking of using Software Composition Analysis (SCA) tool. But I couldn't find a SCA tool helps to block direct use of a third-party library instead of using SDK wrapper/abstraction layer.
What is the best way to solve this problem?
Thanks
We have an app written in Objective C. It uses CoreData, RestKit, about 10 viewcontrollers.
We would like to migrate it to Xamarin (so we can target Android and Windows).
I was hoping there was a way to bind the current code to a Xamarin solution and kind of rewrite features step by step within Xamarin (eg: replacing a viewcontroller at a time, and at the end replacing RestKit+CoreData, by SQLite + ServiceStack).
I am aware of the binding to Objective C option that they provide, however, it doesn't look to be the appropriate fit for this (way too complex, probably easier to rewrite the app from scratch).
Is there a way to migrate our current project to Xamarin so we can convert? or do we start from scratch?
Thanks.
Options:
Migrate full project - no;
Automatically create binding for libraries, rewrite business-code, UI-code - yes;
Rewrite from scratch using .Net/Mono classes - yes.
If code size is relatively small, you should rewrite the whole app. Moreover, thus you could have a chance to separate business-logic from UI code and tools libraries (RestKit, CoreData). In perspective, that code will be more reliable and cross-platformish.
This tool can help. It does Obj-c to C# translation (some manual cleanup required):
Automagical
Quite probably, a re-write, from scratch. One thing to keep in mind, if your back-end is .net.. and you are using DTO's.. like with AutoMapper from Entity Framework objects.. you'll be able to re-use those DTO objects on your mobile side with Xamarin. If you are using OData, I'm not sure if this is still a problem, but Xamarin studio wasn't generating OData service clients. So you had to generate them in Visual Studio, then take the generated client code and throw them into your Mobile projects.
sqllite-net is awesome. I've never had any problems with it.
https://github.com/praeclarum/sqlite-net
I currently have a project, with DTO Objects from an Azure WCF service, that I push directly down into SQLLite objects on IOS and Android with Xamarin. I use RestSharp, rather than Service Stack. I should probably go learn the difference.
If you are looking to use SQLCipher from the Component store, to encrypt your sqllite db locally on your device (Good advice to do so), you should be aware that there is an issue in android.. going to 2.2 or 2.3 with SQLCipher. Works for ICS and above though, if I remember right.
Just be careful on your security implementation for allowing clients to connect. I want to say.. don't take too much advice.. and don't take too little either. : )
What is the difference between CodedUI and UISpy? Does both use same mechanism?
I need to implement support for UISPY in my own custom grid control[WinForms] to recognize each cell as like in the MS DataGridView. currently UISPY recognizes my entire control but not individual cell.
Any help would be highly appreciated
I'm not sure how UISpy works but CodedUI uses the UI Automation framework to access the UI components in an app.
Regardless, you might want to look at using something like HawkEye or WinForms Spy as a starting point for doing what you need.
The UI Spy tool is obsolete and no longer available. Developers should use other tools such as Inspect.exe that are available in the Windows Software Development Kit (SDK).
I am developing membership software with C#, but I need to implement access control and also searching for members with fingerprint technology. Any ideas how I could go about that?
SourceAFIS works well and is C#. I know a Java shop that wrote their client code in C# primarily so they could use it.
We have a Windows CE 6.0 based product that allows for firmware upgrades through a web interface. I want to perform a sanity check on the new firmware image to be sure that it is valid. How should I perform the validation?
I see in the BIOSLOADER code, there is support code for decoding a BIN file. I suppose I could massage that to perform the validation. Is there a better way?
Thanks!
The safest way is to wrap the firmware blob in a container format which supports some form of public key signatures.