[gameprogrammer] Re: Scoreboard functionality across internet

From: Sami Näätänen <sn.ml@xxxxxxxxxxxx>
To: gameprogrammer@xxxxxxxxxxxxx
Date: Wed, 22 Nov 2006 12:08:52 +0200

On Wednesday 22 November 2006 10:30, Alan Wolfe wrote:
> I was thinking about this kind of thinking and was thinking there are
> people out there who could reverse engineer the code and figure it
> out.  Do you guys know how realistic a threat like that would be?
> That is assuming that this game im making turns into a "cult success"
> and has tons and tons of players (gotta assume the worst when it
> comes to security right??).

The only way to avoid this kind of attacks is to make some of the games 
code to be run in the server. All else can be circumvented.
It don't need much trafic and not even very often, but this will make 
the game as an "online" game.

> On 11/21/06, Lilith Calbridge <lilith@xxxxxxxxx> wrote:
> > Maybe some sort of encryption with some random data thrown in as a
> > key and more random data as garbage, more garbage than real data. 
> > Make it complex enough that it's not clear what part's the key,
> > what's the score and what's garbage.  Maybe even use some coding to
> > move the score, key and garbage around.
> >
> > --
> > Lilith
> >
> > >>> On 11/21/2006 at 8:29 PM, in message
> >
> > <10560e2e0611211829q4cbcdd9bma39b1007d326e7c5@xxxxxxxxxxxxxx>,
> > "Alan Wolfe"
> >
> > <alan.wolfe@xxxxxxxxx> wrote:
> > > Hey you guys,
> > >
> > > I'm thinking of trying to implement a global scoreboard for a
> > > game.
> > >
> > > The game itself is a standard desktop game where you have the exe
> >
> > and
> >
> > > files needed on your computer (ie its not a web based game or
> > > flash
> >
> > or
> >
> > > anything) and the scoreboard i want to reside on a web page.
> > >
> > > Doing the web and database thing isn't a problem but I was
> >
> > wondering,
> >
> > > are there any techniques to make this process secure?
> > >
> > > I figure what will happen is the game will connect to a database
> > > and send high score data, but of course someone could save this
> > > communication, edit it and replay it so the server said they got
> > > 1000000000 points or something.
> > >
> > > I know i could do things to make the protocol more obscure such
> > > as obfuscating the code that runs it, and encrypt the packets and
> > > maybe use a public/private key setup but I can't come up with a
> > > way to
> >
> > make
> >
> > > it reliably secure.
> > >
> > > Is it just that this functionality can't be done securely? Or
> > > maybe someone has some neat techniques? (:
> > >
> > > ---------------------
> > > To unsubscribe go to http://gameprogrammer.com/mailinglist.html
> >
> > ---------------------
> > To unsubscribe go to http://gameprogrammer.com/mailinglist.html
>
> ---------------------
> To unsubscribe go to http://gameprogrammer.com/mailinglist.html

---------------------
To unsubscribe go to http://gameprogrammer.com/mailinglist.html

References:

[gameprogrammer] Scoreboard functionality across internet
From: Alan Wolfe

[gameprogrammer] Re: Scoreboard functionality across internet
From: Alan Wolfe

[gameprogrammer] Re: Scoreboard functionality across internet

Other related posts: