Databases
StackOverflow2013
Postsdbo
POPreventing Multiple User Accounts On Android (Well User Streams Actually)
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POPreventing Multiple User Accounts On Android (Well User Streams Actually)
    primarykey
    data
    text
    <p>So I have a unique security issue. (Well i think so anyways, but I may just not know what i am doing?)</p> <p>So the overall idea. I want to make an app that sends a data stream to my server. I don't care at all about keeping that stream secure, it contains nothing important. So don't think encryption.</p> <p>Whats important to me is ensuring the validty of each stream. By validaty I mean, validating that each stream is actually coming from a unique hardware device running my app.</p> <p>I have been looking around online about how to prevent users from creating multiple user accounts, everything from verification emails to verification texts. Those are all stopgap measures that take processing time and resources to impliment and only help limit the issue. (Its super easy to make multiple email accounts, and only slightly harder to get access to multiple phone number, and if you figure out the phone number thing its no harde to get a text forwarded to your own phone.)</p> <p>One thought I have for this particular case is to involve a third party who has a definitive list that matches hardware ids to phone numbers, AKA the providers who actually service cell phones.</p> <p>So what would be awesome would be an API to allow the following action. 1. Person starts my app. 2. App sends initial contact to my server. (This will include user phone number) 3. My server receives this and queries the provider servers asking the provider server to query that particular phone number, ensuring it has a valid hardware ID to be on there network and that, that particular phone is running an instance of my app.</p> <p>I think a system like that would solve my issues, and be pretty foolproof. Even if someone ripps off my app and installs an app with the same name on the phone to trick the system, i don't care, because that phone can still only send 1 data stream. And i think it would be almost impossible to create a hardware device to spoof an another phone on there network. (Well maybe you could do it, but they would track ya down pretty fast.)</p> <ol> <li>way to get around this would be to write a virus that infects other phones causeing them to respond incorrectly to the service provider request. While this is a possible hole, i feel safer knowning google and other companies will fight hard against such viruses to keep there systems reputation.</li> </ol> <p>Thoughts? Suggests? Keep in mind, all that matters is verifying that any incoming stream comes from a unique peice of hardware that is running my app.</p> <p>(can you guess what my app is?)</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. This table or related slice is empty.
    1. USuser602622
    plurals
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    2. PO
      singulars
      1. PTAnswer
    3. PO
      singulars
      1. PTAnswer
    1. This table or related slice is empty.
    1. This table or related slice is empty.
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload