forums.smartfoxserver.com

Our current mode is:
[CLIENT] ----internet---> [SERVER]
The data between client and server is unprotected.

My suggest mode is:
[CLIENT] --> [SSL PROXY] ----internet---> [SSL GATEWAY] --> [SERVER]
CLIENT and SSL PROXY running on same client PC.
SSL GATEWAY and SERVER can be on same server PC or different, both are ok.
Local client connect to local SSL PROXY process, which listens data and forward data transparaently. In the remote server side, make a SSL GATEWAY to forward all data to real SERVER.

So, the data between client and server is well protected by standard SSL. The CLIENT and SERVER even don't know the existence of SSL, developers don't need to change a single source code.
What you guys think?

This will require end user to setup ssl proxy which effectively kills the only real advantage of using Flash - 0 efforts install. This could work if you can package the ssl proxy into your client app somehow (you definitely can do it if client is Java based, not sure about Flash)

k0tbegemot wrote:This will require end user to setup ssl proxy which effectively kills the only real advantage of using Flash - 0 efforts install. This could work if you can package the ssl proxy into your client app somehow (you definitely can do it if client is Java based, not sure about Flash)

Oh, you right~ I'm a C++ client API user... aha

If latency is not a problem this may work. Sure.