Writing a secure client/server with open source

edA-qa mort-ora-y eda-qa at disemia.com
Fri Apr 18 19:05:05 UTC 2008

I am writing a score server for client/server games such that various
games can talk to one server.  Each game would thus register for a
name/password and use that in their code to send data to the server.

Now, putting aside all the problems with cheat detection found in closed
source software, it seems my problem is exacerbated by the need to
distribute full code to make the client (this will be the AGPL so server
code is also included).

Does anybody have some good references, or good ideas, on how this can
be accomplished, such that each game client can uniquely identify itself
with the server?  That is, how can I adequately protect some "keys" in a
completely AGPL project?

NOTE: I already understand the problem with detecting cheaters, and I
realize this is a part of the same problem.  I'm just hoping that
somebody has an idea that the most basic identity of a game client can
be protected.

edA-qa mort-ora-y
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
The dis-Emi-A haXe Library -- all you'd ever need to make Flash games
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
Sign: Please digitally sign your emails.
Encrypt: I'm also happy to receive encrypted mail.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fsfe.org/pipermail/discussion/attachments/20080418/76417c9d/attachment.sig>

More information about the Discussion mailing list