Hi, I am looking for books, tutorials, articles that cover aspects, best practices, and/or concepts of security issues - some kind of overview.
Right now I am struggling to put together all the pieces you get when you google for keywords like authentication management, encryption, as3corelib, sql injection, ... My setup will be: flex app with user login and data requests, php scripts, mySQL database. Questions: 1) What is the 'best' way to design a secure login process in flex? 2) After login, how will I authenticate when doing data requests? 3) Working with GUID/UUID tokens, will I have to encrypt those to make their use secure? ... or is that a stupip question? :) 4) Is there any sample how to use the MD5/SHA1 encryption and decrypt it with php? 5) I have found the term 'challenge-response methodology'. Anybody know a (flex/php) sample for that? These security issues are so overwhelming once you have to move from the intranet or localhost to the real world. :) Thanks for your help, Heiko
