Home/ Questions/Q 6473529
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-25T06:28:37+00:00

I am programming a game, and I want highscores to be able to be

  • 0

I am programming a game, and I want highscores to be able to be saved locally, but I dont want the user to be able to go into a plist file and change the values. What is the best way to make it difficult for users to edit the highscores easily. Would making the value an NSNumber that I then write as NSData be sufficient?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    AES is probably more trouble than it’s worth here. Much as I respect Jeff LaMarche, this implementation is not good. It’s adequate for this purpose, but it’s not something to copy around in my opinion unless you understand what’s right and what’s wrong with it. I talk about this at length in Properly encrypting with AES with CommonCrypto and include how to do AES correctly; but you probably don’t want the hassle of doing AES correctly here, and it wouldn’t buy you much if you did.

    My recommendation is a simple checksum hash:

    - (NSUInteger)checksumForScore:(NSUInteger)score player:(GKPlayer *)player {
  NSString *string = [NSString stringWithFormat:@"%d%@%@", score, [player playerID], kLongRandomPassword];
  return [string hash];
}

    You then store the checksum along with the score. You validate it like:

    - (BOOL)isValidChecksum:(NSUInteger)checksum forScore:(NSUInteger)score player:(GKPlayer *)player {
  return (checksum == [checksumForScore:score player:player]);
}

    I’ve used GKPlayer playerID here to pick something that’s easy for you to use, but not trivial for the device owner to change while playing. Doing it this way makes replay attack hard. I can’t just copy my friend’s plist entry with it’s super-highscore to my plist. It’s also nicely persistent when the user changes devices or restores this device. If you’re not using GameKit, first, you probably should 😀 and second, you’ll have to figure out if there’s some other key you want to use. A “user handle” would be fine too if you have the user enter that at some point. Anything that’s unique-enough to the user that he wouldn’t just copy his friend’s.

    Keychain is interesting as an obfuscation technique. It’s a royal pain to read even legitimately, so the official SDK provides its own obfuscation 😀 I doubt it’s worth the trouble, but it is a decent place to “hide” small amounts of data.

    NSCoding isn’t even obfuscation. Anyone who’s going to bother to open up the plist can read and write NSCoding in less than a minute. Same for turning this into an NSData. Same for storing it in SQLite or Core Data.

    @CocoaFu’s suggestion of NSDataWritingFileProtectionComplete is clever, but I doubt it will have any real impact on a jailbroken device. Once the device is unlocked, the OS will will decrypt any file for you, so it’s no barrier at all to someone who knows the device’s PIN.

    • 0