Public/Private key encryption
I'd like to transmit some data from server to app, and from app to server...I'd like to make sure these transfers were not subject to the "man in the middle" hack - and the cleanest, simplest and most secure way to do this is with public/private key pair encryption.
Yes I know there are alternative ways to do this - but none as secure for this amount of cost (i.e. high security/low effort) .
we already have blofish - but thats "single key" encryption so not much use here...
Christoph Hart last edited by
If you use SSL on your server and HTTP post requests, you get the industry standard protection against sniffing attacks (AFAIK, I'm not a web guy). I don't think that this is something you need to implement within HISE.
d.healey last edited by
All the secure stuff should be done server side. You send the public key from your app and the server approves or rejects the request. Any data within the client side app or that you are sending to the client from the server should be treated as if it's visible to the end-user.
@Christoph-Hart - yeah I've been a web guy - well actually a video distribution guy for the BBC, Sky etc.. and no, sniffing isnt the problem, the man in the middle doesn't need to understand the message - he just needs to bounce it back...