- Home /
Data security of Web player
I am currently working on a game that will be hosted on a "secure: website that may need to obtain user data (the server will have securities in place), but we are unclear on the security of the data being passed from Unity to the server, and what steps should probably be taken in order to protect this data from being gathered, tampered with, or false data injected.
are there any steps that the Unity application can take to protect the data so that when passed between Unity, and the server (and the other way as well) that the data is secure.
I doubt that having Webplayer grants any explicit securities. is there anywhere I can look to find information on how, and where we need to protect the data between Unity, and the Server?
I don't know of any such resources. The webplayer fetches data using the browser to actually perform the request. So, the requests could be intercepted or tampered with. Your design needs to anticipate this.
You could probably try to encrypt it, but I don't see much reason in doing that if you can already manipulate the data before the Web Player even reaches it.
Perhaps try a sanity check before forwarding / using the received data on the server?
the encryption would be due to the potential sensitivity of the information that is being sent. I cannot go into too much detail, but I need to make sure that the data gets to either end as safely, and securely as possible.