How secure is JavaScript encryption
Question
I'm developing a web project using JavaScript with AJAX requests to WebServices and I'm interested in encrypting the information.
How secure is to encrypt from the client side? Remember that I'm not using a server side language.
3 answers
solution1
4 2011-09-08 15:50:58
您不能只是将您的连接设为https而不是http?
solution2
4 ACCPTED 2011-09-08 15:52:13
There was a huge discussion on hackernews about this last week, inspired by this article on matasano.com .
Basically, secure javascript does not exist. The only way is to have everything be over HTTPS, because if you don't, you expose your user to certain flaws.
But once you have HTTPS, extra encryption via javascript is pointless: everything already is secure.
solution3
1 2011-09-08 15:52:06
Not very secure. There are little tricks here and there that you can do to make it a bit more difficult to breach the security but in the end if you give both the key and lock away to the public then you're not really secure.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.