article

Levon@Amazon avatar image
Levon@Amazon posted

Advanced Security Model: Why use RSA Encryption around Auth and Prize Tokens?

When using Amazon GameOn, you will notice that there is a requirement for creating public / private key pairs and encrypting payloads (e.g. using RSA Encryption around Auth and Prize Tokens).

It might seem that implementing the encryption is burdensome, however many game developers employ game servers to send game traffic between Amazon and their player.

By using End-to-End Encryption, it allows GameOn to send secured messages over those intermediate game servers while ensuring integrity of the Prize.

Therefore, this extra TLS Crypto steps allow for Auth and Prize Tokens to be sent over open game networks, and prevent attacks, such as Man in the Middle attacks. To help our developers get started faster, we currently provide a Unity / C# reference implementation, and we hope to have reference implementation for more platforms in the future.

gameon
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Article

Contributors

levonl contributed to this article