|
|
|
|
|
|
by jdiez17
4106 days ago
|
|
|
One way of doing this (for your particular use case, but not for the general case) would be for your "business logic" to be implemented in the client side, which as you said, can be verified easily. Then make your backend be a dumb data storage. For example, if you want to store people's names and date of birth, you would encrypt those on the client-side and only ever send ciphertext to the server. The encryption key could be derived via a passphrase composed of a user name and a password. Of course, this means that if someone loses their credentials, they lose their data forever. |
|
|