BrightScript Encryption

Owned by BrightSign TechDocs
Last updated: Feb 23, 2024

Brightscript supports encrypted modules. In order to use encrypted Brightscript, make sure that the desired players are running OS 8.1.54 or newer.

To encrypt your Brightscript modules, first contact Brightsign and request an encryption key. Brightsign will generate a new unique key pair and provide customer-pub.pem and customer.hdr. Once those two items are in your possession, encrypt your BrightScript files using the following process:

$ encrypt-brightscript --customer-public-key=customer-pub.pem --encrypted-key-data=customer.hdr myscript.brs

This will generate myscript.ebrs which is the encrypted version of the script.

Any .brs file can be encrypted, including those loaded with LIBRARY. Additionally, if any encrypted file is loaded, the BrightScript debugger is disabled for security reasons.