来自Flash的套接字连接安全性
[英]Socket Connection Security From Flash
问题描述
I have a flash application that connects to java socket server. 
我有一个连接到Java套接字服务器的Flash应用程序。 Some hackers try to imitate messages from an external software like charles, winsock pocket editor. 一些黑客试图模仿外部软件(如查尔斯,winsock袖珍编辑器)发出的消息。 How can I create a secure connection that the server would only accept commands coming from flash? 如何创建服务器仅接受来自闪存的命令的安全连接? Thanks in advance. 提前致谢。
2 个解决方案
解决方案1
0 2012-08-06 09:03:16
I recommend below site. 我建议在下面的网站。 this site is great site have a many kinds of tutorial with you want that java flash socket connection. 这个站点是很棒的站点,您想要与Java flash套接字连接有很多教程。 but this site is in Japanese, but if you use Google translate to view and there will not be a big problem. 但是此网站是日语,但是如果您使用Google翻译查看,不会有太大问题。 of course some Is awkward, but, there will not be a big problem.for 3 years i visited a many kinds of flash, as3.0 tutorial site. 当然有些尴尬,但是不会有什么大问题。三年来,我访问了许多Flash as3.0教程站点。 i think, this site was the best for me. 我认为,这个网站是最适合我。
flash(as3.0)-java socket connection tutoral Flash(AS3.0)-Java套接字连接教程
解决方案2
0 已采纳 2012-08-06 17:21:22
This is fundamentally impossible. 从根本上讲这是不可能的。 The best you can do is make attacks more work, but even then it's likely to cause you more work than an adversary. 您能做的最好的事情就是使攻击工作量更大,但是即使那样,也可能使您的工作量超过对手。
Even if you were to encrypt the communication, you'd have to ship a key which an adversary could inspect. 即使您要加密通信,您也必须提供对手可以检查的密钥。 Possibly the easiest route for an attacker over obfuscated channel would be to alter the running flash program. 攻击者最容易通过混淆通道访问的方法可能是更改正在运行的Flash程序。
(In theory, you could have a trusted platform which wipes on tampering. But that isn't a PC.) (理论上,您可以拥有一个可靠的平台来消除篡改。但这不是PC。)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.