i have relatively successful app in app store allows people view metrics on idevice using json file hosted on server. app has simple settings screen in type url of json file , app takes care of visualising data in file. use afnetworking this. example url might be: http://www.mylargecompany.com/factorykpi.json
customers coming me , asking ability connect servers more securely. problem there myriad of ways can secure server.
i need advice. kind of standard security features need build app. confused oauth, https, etc.
i believe oauth mean customers server have use it? can make generic oauth login screen in app or need know web server connecting authenticate.
any advice on basic of security measure welcome!
regards, monkeybusiness
security broad topic. there no short answer. in case, both web service , client app need implement security mechanisms. recommend, provide both web service , client app.
you need user login password, "server verifies user identity" , "client verifies server identity" using certificates. utilize https ensures transport confident data in secure way. web service should implemented 1 of known web application frameworks since security scary business, , tricky. implementing yourself, might end in suboptimal insecure application.
you should read more complex topic , come when have specific questions.
Comments
Post a Comment