Advanced Security Model: Why use RSA Encryption around Auth and Prize Tokens?

Levon@Amazon created · Mar 17 at 01:28 AM · edited · May 08 at 02:22 PM

When using Amazon GameOn, you will notice that there is a requirement for creating public / private key pairs and encrypting payloads (e.g. using RSA Encryption around Auth and Prize Tokens).

It might seem that implementing the encryption is burdensome, however many game developers employ game servers to send game traffic between Amazon and their player.

By using End-to-End Encryption, it allows GameOn to send secured messages over those intermediate game servers while ensuring integrity of the Prize.

Therefore, this extra TLS Crypto steps allow for Auth and Prize Tokens to be sent over open game networks, and prevent attacks, such as Man in the Middle attacks. To help our developers get started faster, we currently provide a Unity / C# reference implementation, and we hope to have reference implementation for more platforms in the future.

gameon

Advanced Security Model: Why use RSA Encryption around Auth and Prize Tokens?

Article

Follow this article

Navigation

Related Articles

Related Articles

Standard Security Model for GameOn applications

How do I delete my game from GameOn?

Which time zone will a tournaments start and end time be in?

Can I run mulitple tournaments at the same time?

Pseudo code for creating a tournament, adding a prize, and registering a player

Unity sample code for handling encryption / decryption of game keys

How to choose eligible ranks for your tournament

Best practices for naming your tournaments