Saturday, 17 March 2012

iGrapher 3D 2 (The Dubstep Remix)

Here's a sneak peak of the iGrapher 3D 2 submission candidate (codenamed: Dubstep remix).

Featuring beefed up res, live stock charting tiles, Android support and more..

Wednesday, 7 March 2012

Web Apps are more secure than Native Apps

After attending today's HTML5 training day at GDC. I realized that security is still a huge concern for games developers to develop HTML5 games. People believe that your source code is just there for people to tinker with, chop and change.

This is not true and this train of thought needs to be fixed. Yes, your source code is out there, but nearly all commercial JavaScript applications are sent out obfuscated. Obfuscation is a way of reducing the source code size and rewriting your source in unintuitive text. Sure, the structure can be un-obfuscated, but so can the structure of a native application binary.

What's even better about JavaScript from a security perspective, is that JavaScript is dynamic and interpreted. Which means, you can stream in more source code to run. Native applications can't do this. If you release a native application, your user has access to the entire binary, which can be hacked open and unlocked. This comes to play when we think of the freemium movement. Where apps are provided and unlocked with in-app purchases.

If you release an iOS application with in-app purchases, you can only set flags in the binary to allow the user access and run other areas of the binary. These areas can be hacked locally and unlocked without an in-app purchase. However, with JavaScript, you can provide the base application, then stream in source code once an in-app purchase is made.

Sure, once the app is downloaded people can hack away at it, but, something you can do if you're wanting to be more secure, is to specifically send out source code that has been specifically modified for the end user. So if phreaking does occur, you can cross verify the app with the server.

So to conclude, web apps can be more secure than native apps.