The main reason for implementing a software protection product is to prevent your software from being illegally copied, manipulated or reverse engineered. Wibu-Systems also provides easy-to-use tools for integrating a wide range of flexible license models into your software.


Define and create your license models in a straightforward and flexible manner using CodeMeter License Central. What do you want to sell? Single-user or network licenses, subscription or perpetual license models, leasing or pay-per-use? Or do you just want to distribute demo versions?


Discover more about Security, the art of securing your software, machines and devices with integrity protection and secure boot from cyber-attacks, sabotage, or tampering. Implement protection methods such as anti-debugging, changing keys, intrusion detection, and secret locking codes, which invalidate the license as soon as an attack is detected..


Computer-Bound license file


User-based licence in the cloud


Hardware-based security


Computer-Bound license file

A CmActLicense is the cost-effective alternative for protecting and licensing your software. A CmActLicense consists of a signed and encrypted license file. The software publisher has full control over whether and how the license is bound to the user’s computer. The unique encryption method used for the license file gives you the option to store secret symmetric and asymmetric keys safely on the computer of the user.

With CmActLicenses, software publishers can independently encrypt and decrypt data using symmetric or asymmetric algorithms, like AES (Advanced Encryption Standard), RSA (Rivest-Shamir-Adleman) and ECC (Elliptic Curve Cryptography), and sign data or verify the signature.

CodeMeter SmartBind® is a patented solution for binding a CmActLicense to a computer that combines security and flexibility. CodeMeter SmartBind creates a fingerprint of your user’s computer, which records several hardware properties, such as the hard disk, motherboard, network card, and CPU. The fingerprint automatically takes the environment and the operating system of your user into account. Virtual environments and their specific characteristics are automatically detected as well.

Software vendors can create CmActLicenses that can be used without any activation. Such CmActLicenses are already pre-activated, are not bound to any hardware property of the user’s computer, and can be imported onto any computer. Once the import process is complete, these CmActLicenses are bound to the machine and can be used as secure repositories for licenses and cryptographic keys.

Software publishers can also choose whether CmActLicenses can be imported once only or several times on the same computer. A time-limited license that your user can import just once can be used as a demo/trial license. In this case, you will need a CodeMeter Trial License.

If you are using Protection Suite to protect your software against reverse engineering and you do not require any licensing, a license without activation is the optimal solution for you. The cryptographic keys that protect your software are securely stored in a CmActLicense that is separate from your software. This makes analyzing your software practically impossible. In this case, you will need a CodeMeter Protection Only License.

The CodeMeter Cloud solution comes with access to a highly secure and scalable server in the cloud, operated by Wibu-Systems, which doesn’t guarantee just state-of-the-art security, but also high performance access to any licenses you have defined.

As is the case with all types of CodeMeter licenses, any license used with CodeMeter Cloud can be created and delivered through CodeMeter License Central. Any integration with existing CRM, ERP, or e-commerce solutions can therefore remain in place. Instead of activating the license in a local CmContainer, it is transferred to a special CmCloudContainer on the CodeMeter Cloud server. Provided they have the right credentials, users can then access the license directly and use it like any local license.

Since CodeMeter Cloud integrates with the standard CodeMeter technology and workflows, any applications protected using CodeMeter Protection Suite will automatically be compatible with CodeMeter Cloud.

One of the great advantages of CodeMeter Cloud is that it aligns the processes on both the cloud and the on-premise side. CodeMeter License Central can be integrated with SAP, Salesforce, or other ERP, CRM, and e-commerce solutions. CodeMeter Cloud also comes with the CodeMeter’s well-known automated workflows for creating and managing licenses.

Traditional licensing solutions need users to actively return their licenses if they are to be used on another device. With CodeMeter Cloud, the user can re-use the license from another device without any specific action on their part, as long as it is the same user with the same credentials: the CmCloudContainer is not bound to a device, but to a known user.

By defining the number of licenses, the software vendor can determine whether and how often a license can be used in parallel.

CodeMeter Cloud has been designed from the ground up with performance as a priority. An in-memory layer has been designed in the web architecture to interact with a NoSQL database. Together, they provide top performance for many simultaneous license queries in a highly secure environment. A CodeMeter Cloud Server instance consists of three distinct layers

  • Load Balancing
  • Services
  • Persistence

The Load Balancing layer distributes license queries reliably and efficiently, even when several concurrent requests are received simultaneously. As a result, many thousands of end users can send their requests to the CodeMeter Cloud Server at the same time – be it people or machines or applications running on an IoT device.


User-based licence in the cloud


Hardware-based security

When it comes to software protection, CmDongles provide the highest level of security. The core of every CmDongle is a smart card chip, which includes a microcontroller with a secure storage area for cryptographic keys and the firmware.

Wibu-Systems currently uses smart card chips from Infineon Technologies, which are EAL 5+ evaluated and provide protection against side channel attacks, such as DPA (Differential Power Analysis). Reading keys and copying the firmware is therefore practically impossible.

With CmDongles, software publishers can independently encrypt and decrypt data using symmetric or asymmetric algorithms like AES (Advanced Encryption Standard), RSA (Rivest-Shamir-Adleman), and ECC (Elliptic Curve Cryptography) and sign data or verify the signature.

Software vendors that make use of CmDongles can update licenses directly in the field. The update is based on data exchange. In practice, the user sends the software publisher a remote context file that identifies the desired CmDongle. In turn, the software vendor creates a remote update file that can be imported only once to that specific CmDongle.

This process allows the activation, upgrading, and deactivation of licenses. With a tamper-proof receipt, CodeMeter automatically ensures that the action was performed successfully. The license update can be transmitted automatically by means of CodeMeter License Central.

Each CmDongle is equipped with an internal clock. All time-based licenses are automatically checked on the CmDongle against the internal clock. This clock is located in the smart card chip and is protected against tampering. It provides an intelligent synchronization mechanism, is available for all form factors, and needs no battery, meaning an unlimited running time.

Optionally, CmSticks/T come with an extra battery-operated clock that is used as an additional reference for synchronization for the virtual clock. This specific CmStick is highly recommended if the software is time limited and rarely used.

CmDongles are available in a complete array of form factors.

Also the firmware of CmDongles can be updated in the field. Software vendors can use functions that were not yet available at the time of delivery. The firmware update is signed by Wibu-Systems and can be distributed online or offline. A fake or homemade firmware update would therefore be detected and rejected by CmDongle.