Hi All I was wondering if anyone had any thoughts or guidance as to how best to indicate information is being collected securely i.e switching to https.
For example in the traditional approach to web development when you are taking information securely you jump from the standard url http:/www.mywebsite.com/ basket.html to https://www.mywebsite.com/checkout.html. The viewers of the website then see the padlock appear in the status bar of their browser and now feel some security that their information is being encrypted. Now from a flex perspective two things obviously hinder this. The first being to enable the history functionality flex runs within a frame which can be reflected insecurely in a browser even if the particularly frame in question is running securely. And secondly the ideology of no longer needing to refresh the browser window doesn't give you an excuse to jump to a secure version of the website. Now I guess there are a number of ways to do this: 1. Take the details within your RIA and transfer the information securely using Remoting to your underlying business logic ( we would be using remoting and POJO). To reassure the user display the page with a selection of well placed padlocks, security statements and the like. 2. Save state out of the RIA to a remote datastore and force the browser to reload the same RIA in an https version of the website and re-initialise it with the previously saved state. 3. Run the whole lot in https and avoid the issue. As you can tell at the moment I am considering this very much from a hypothetical point of view. I appreciate further consideration needs to be made as to the specific security of taking information but for now I am concerned as to the users perception of such a process. Cheers Paul ------------------------ Yahoo! Groups Sponsor --------------------~--> Get Bzzzy! (real tools to help you find a job). Welcome to the Sweet Life. http://us.click.yahoo.com/A77XvD/vlQLAA/TtwFAA/nhFolB/TM --------------------------------------------------------------------~-> -- Flexcoders Mailing List FAQ: http://groups.yahoo.com/group/flexcoders/files/flexcodersFAQ.txt Search Archives: http://www.mail-archive.com/flexcoders%40yahoogroups.com Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/flexcoders/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
