Vote count: 0
I was thinking about a way to ensure that the authenticated client (by username, password, OAuth) is using the official client, and not a third side one which sends requests to the server, assuming that the official client can be decompiled and the code is revealed.
What's the best solution for this security problem? I have been reading about digital signature and SSL certificates but I cannot find how it solves this problem.
Hope to find a good answer, thanks!
asked 31 secs ago
Official client verification - how does it work?
Aucun commentaire:
Enregistrer un commentaire