stackoom
  简体   繁体   中英

How secure is it to call Amazon S3 Services from an iPhone?

 原文  2011-01-12 18:26:27       iphone/ security/ amazon-s3

Question

I want to make calls to the Amazon S3 rest API through an iPhone app. It means that I will have to write in my iPhone app the secretAccessKey and the accessKey of the Amazon S3 service.

If my app goes on the appstore, is it going to be dangerous for me? Maybe some people will extract my secretKey and my key to use it for other purposes? Is there a way to protect my app from this kind of attacks?

Thanks!

Martin

1 answers

solution1
 3 ACCPTED  2011-01-12 18:52:33

If possible you shouldn't store your keys in your app.

You can see a lengthy discussion of the topic here: Architectural and design question about uploading photos from iPhone app and S3 (check out Adrian Petrescu's answer).

There are a couple of options here. First, upload your data to a central server and then onto S3. Your keys stay private on your server. Or you can look at presigning your URLs.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Uploading to Amazon S3 Services from iPhone App How to upload a file to Amazon S3 from iPhone App? Amazon S3 POST upload (from iPhone) upload small thumbnail images from iPhone app to Amazon S3 I unable to use Amazon web services s3 uploader in iphone sdk Using Amazon S3 API For iPhone Pulse like infinite scrolling of images loaded from Amazon Web Services S3 Amazon S3 getDate() API Call? Kind of web services and how to call them from an iphone Using Amazon S3 SDK to backup and restore iPhone data
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM