使用 SSL 的移动跟踪
[英]Mobile tracking using SSL
问题描述
I have a mobile app (Android/IOS) which can track the end user on field.
我有一个移动应用程序(Android/IOS),可以在现场跟踪最终用户。 I want to secure the communication between the mobile app and the REST server.我想保护移动应用程序和REST服务器之间的通信。 So I plan to use SSL for this.所以我打算为此使用SSL 。 Is it the recommended to handle such critical info when we consider to send these locations every 100 meters (more or less)?当我们考虑每 100 米(或多或少)发送这些位置时,是否建议处理此类关键信息?
If yes should we open a SSL connection all the times we send a single location or should open and keep a long (I do not know how long) SSL session in order to send the locations?如果是,我们应该在发送单个位置时始终打开SSL连接,还是应该打开并保持长时间(我不知道多长时间)的SSL会话以发送位置?
If not then what is the fallback?如果不是,那么回退是什么?
1 个解决方案
解决方案1
1 已采纳 2017-02-06 09:42:21
I made an app like that.我做了一个这样的应用程序。 The user not always has Internet.用户并不总是有互联网。 The user very probably want to upload the data only, when is connected to WI-FI.用户很可能只想上传数据,当连接到 WI-FI 时。 My solution it was to store the data encrypted with AES in NDK side inside the app ( private data ) upload to server -without hassle of SSL encrypted of course.我的解决方案是将使用 AES 加密的数据存储在应用程序内部的 NDK 端(私有数据)上传到服务器 - 当然没有 SSL 加密的麻烦。
At the server side it was dencrypted.在服务器端,它被加密。
The server will send a confirmation to phone the decrypt process status, optionally: done / failed.服务器将向电话发送解密过程状态的确认,可选:完成/失败。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.