If you cannot guarantee that the .php files would be stolen, then your best bet is obfuscating the source - so it becomes unreadable and very hard to convert to regular code. I don't advertise here, just I know that Ioncube does the job well.
I would also suggest you use more than one method - say both licensing file and obfuscation - it would be harder to break.
See this answer also.
