security - Data Encryption With breeze -


make quick: going publish our web site soon, our task provide live scores, , paying money live result fast possible.

we not force user log-in see latest result, don't calling url , result our web site

currently using breeze , happy , it's functionality ((hello ward)) want encrypt data on server , decrypt on client. know it's not efficient it's enough (just makes hard) , know can use hand made js handle situation, lost breeze + knockout functionality if encrypt server response (json) , other thing can encrypt data (column column) not killing me encrypt on server , decrypt on client (i hope not in bio-direction)

i'm looking cleaner hide complication , allow me not think it.

(in nutshell: not bank, when hit url: xxxxx/breeze/api/soccer not human readable result (and 1 step head of base64, don't call encryption or security))

if understand correctly, want hits raw api believe data encrypted. client app know better , "decrypt" readable form.

i don't have js library simulating crypto. can find on web (checkout crypto-js). if had one, , wanted unobtrusive possible client developer ... essence of question think ... put "decrypt" inside my custom jsonresultsadapter. that's easy place morph incoming data bits before app sees them.

it's different question if want "encrypt" them save. think said not issue @ moment.

you realize exercise in security-through-obscurity. if enough, carry on. if need real confidentiality, forget in pure javascript. cannot serious encryption in browser javascript today. don't believe tells otherwise (see "javascript cryptography considered harmful"). appropriate thing require authentication , use https beginning end. security gurus tell me.


Comments

Post a Comment

Popular posts from this blog

blackberry 10 - how to add multiple markers on the google map just by url? -

i have android application, want convert blackberry 10 , google map needed in app,but blackberry 10 not support googlemap , blackberry developer web site supply way replace it.the sample below: @override public void oncreate(bundle savedinstancestate) { super.oncreate(savedinstancestate); setcontentview(r.layout.main); webview webview = (webview) findviewbyid(r.id.mywebview); webview.getsettings().setjavascriptenabled(true); webview.loadurl("http://maps.google.com/?ll=36.97, -122&lci=bike&z=13&t=p"); } i cannot understand it,i not know how add multiple markers on googlemap via url? can me? this worked me map shown in webview.
Read more

php - guestbook returning database data to flash -

i've been struggling problem long , unable make work, hope can me it. first, know php files correct , mysql database works fine. in flash, able submit comment database comments not display. did many tests such making returned_database flash separately , worked fine - can see old comments. long combine submitting 1 , returning 1 together, flash doesn't show comments more. put lower version flash effects on frame thinking doesn't collaborate returning flash, submitting flash works fine. since pretty complex problem hard me copy actionscript code because on different frames in flash. if has ideas fixing maybe can send file you?
Read more

delphi - Dynamic file type icon -

i want register file type in windows , make program delphi draw icon of file according contents (something custom icon format). how can this? thanks nortd , user539484 comments, searched internet "shell icon handler delphi" , found sample here , , shell+ components has component this.
Read more