tags:

views:

176

answers:

2
+1  Q: 

is my google app engine deployed source code secure?

I'm thinking about good ways to store third party credentials, which basically means there needs to be a secret somewhere, either in code or data. I'm deploying on google app engine.

If the 'secret' was something like

pw_passphrase = sha2(username + 'global-password')
pw_plaintext = aes_decrypt(pw_passphrase, pw_ciphertext)

can I depend on this code never being seen by a non appengine administrator?

...what if the credentials protect something supersensitive like personal financial data, do we still trust it?

(The sha2 bit is exchangable with any other secret pseudo-random function.)

+3  A: 

Yes: your source code is secure (as secure as Google can make it), and there's no way for unauthorized third parties to peek.

Alex Martelli  2010-01-03 06:36:57
there's no **known** way for unauthorized third parties to peek.
Vinko Vrsalovic  2010-01-03 06:42:38
You should perhaps mention that you work for Google.
Teddy  2010-01-03 07:27:26
@Teddy, sure, anybody interested can check my Google profile, wikipedia entry, interviews, etc -- it's hardly secret;-). However, I always speak for myself, and myself only (I'm not authorized to speak for Google nor for other firms).@Vinko, sure, one can't "prove a negative" (e.g., I can't _prove_ the NSA hasn't already cracked every code in existence or yet to be invented, and is routinely monitoring every bit every second;-).
Alex Martelli  2010-01-03 16:43:05
+1  A: 

Also remember to handle exceptions in your code with an error page, or else an exception thrown might uncover your source code to an unsigned user.

jai  2010-01-03 21:33:50
wow thank you for this. definitely another reason to sandbox the sensitive stuff to its own dedicated, simple app.
Dustin Getz  2010-01-04 01:28:54

related questions

Encryption in C# Web-Services
How Do You Secure database.yml?
ASP.NET LocationProvider
What do you (or your company) use for wiping a machine?
Can a proxy server cache SSL GETs? If not, would response body encryption suffice?
Java: What is the best way to SFTP a file from a server
How do I call a Flex SWF from a remote domain using Flash (AS3) ?
Best way to store a database password in a startup script / config file?
Using VM to get around VPN restrictions
Best references for secure coding practices in ASP.NET and classic ASP.
Secure Memory Allocator in C++
Resolving Session Fixation in JBoss
Best Practices for securing a REST API / web service
Defensive programming
Personal Linux web server
Block user access to internals of a site using HTTP_REFERER
Is there an Unobtrusive Captcha for web forms?
My website got hacked... What should I do?
What all do I need to escape when sending a (My)SQL query?
How do you disable browser Autocomplete on web form field / input tag?
Best .NET obfuscation tools/strategy
Are there best practices for testing security in an Agile development shop?
What is the best way to avoid SQL injection attacks?
Found a critical bug, but the company doesn't care
PHP Session Security