Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have a flash application that connects to java socket server. Some hackers try to imitate messages from an external software like charles, winsock pocket editor. How can I create a secure connection that the server would only accept commands coming from flash?
Thanks in advance.
This is fundamentally impossible. The best you can do is make attacks more work, but even then it’s likely to cause you more work than an adversary.
Even if you were to encrypt the communication, you’d have to ship a key which an adversary could inspect. Possibly the easiest route for an attacker over obfuscated channel would be to alter the running flash program.
(In theory, you could have a trusted platform which wipes on tampering. But that isn’t a PC.)