I am building an app which gets JSON-encoded data from a web server. Right now, 开发者_StackOverflow中文版anyone can access the server-script that gets the data, and potentially access sensitive data.
So, what is the best way to ensure that the app is what's getting the data, and secure the traffic between the server and app? The server-script is PHP.
Thank you.
You should use nonces
Here's a great tutorial on how to generate an MD5 hash in C:
http://www.saobart.com/md5-has-in-objective-c/
So, what is the best way to ensure that the app is what's getting the data
In general, you can't. The best you can do is use some sort of login system, but anyone sniffing packets will be able to figure that out.
and secure the traffic between the server and app?
Use TLS, i.e., HTTPS using SSL.
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论