Skip to content

Protect package files

This page provides various security features to protect your packages and their contents. These features help safeguard your files against issues such as tampering, unauthorized access, or bad downloads.

Protect My Files with This Key

Enter a key to encrypt your files. While this is not the highest level of security, it is more robust than a simple password. Encrypting 7-Zip archives ensures that users cannot extract files using external tools without running your package.

When this option is enabled, the package will prompt end users for the key before extraction. If they provide the wrong key, the files will not be extracted, and the package will close.

Warning

If you use an external .7z archive file, files inside the archive will not be encrypted. Encryption only applies during file compression.

Store the Key Inside the Package

If you want to password-protect your files but avoid prompting users for the key, enable this option. The package stores the key internally and uses it automatically during extraction. If you still want to ask users for a password, refer to the next section.

Encrypt Filenames with the Key Above

This feature encrypts filenames using the provided key, preventing unauthorized users from viewing the file list with tools like hexadecimal editors or 7-Zip. The package automatically decrypts filenames during extraction without requiring user input.

Ask End Users for the Following Password

Enter a password that users must provide to extract files. If the password is incorrect, the package will exit. This option does not encrypt files but adds a layer of protection by requiring a password.

Set an Expiration Date

You can set a trial expiration date for the package. After this date, the package will display an error message ("Package Expired!") and exit.

Note that this feature is not highly secure and does not perform robust date validation. It is primarily intended as a reminder for users to download a newer version of the package.

Enable Package Size Check

This option verifies the package's size at startup. If the size differs (e.g., due to incomplete downloads or truncation), the package will display an error message and exit.

This option is incompatible with digital signing.

Note

This feature is superseded by digital signing. Digital signing ensures the package has not been tampered with and matches the original file. Use code signing certificates to digitally sign your installer package for enhanced security.