Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

DarkBASIC Professional Discussion / Multisync and encryption

Author
Message
Ben_UK78
16
Years of Service
User Offline
Joined: 10th Jul 2010
Location:
Posted: 4th Jul 2011 10:21
Hi All,

I am going to be using Multisync to send real time data over the internet. The data is highly commercially sensitive - so now the program is pretty much up and running I am at the stage of thinking about encryption.

Does anyone know anything at all about whether Multisync has any encryption built in? Literally any information would be useful since my mind is empty on this aspect of Multisync and it's transmission.

Other than that I can program my own I guess. I am in a good position since the program will only be communicating with itself - no keys need to be transferred, I can preprogram whole tables and use random numbers as key identifiers. I might have to go back to that book on Enigma
=PRoF=
23
Years of Service
User Offline
Joined: 17th Mar 2003
Location: Milton Keynes, UK
Posted: 4th Jul 2011 12:05
I'm fairly sure multisync doesn't have its own encryption.

I wrote my own the last time I was using it for a project, altho I'm far from the most knowledgable person here regarding encryption.

Indicium
18
Years of Service
User Offline
Joined: 26th May 2008
Location:
Posted: 4th Jul 2011 14:39
If it's things such as passwords and logins you are sending, you could hash them with md5 at clientside and check them against prehashed passwords serverside.

bitJericho
23
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 4th Jul 2011 15:30 Edited at: 4th Jul 2011 15:40
you never ever want to use random numbers generated in the normal way as a key for your password. Random number sequences are easily brute forced. The easiest encryption method would be an encrypted VPN between your server and client if multisync doesn't support SSL.

Also, md5 is not secure. It's only marginally more secure than plaintext. You should use blowfish/bcrypt.

[center]Official TGC President elect.
Pwning newbs since 2002.

Login to post a reply

Server time is: 2026-07-10 21:41:34
Your offset time is: 2026-07-10 21:41:34