Hello,
I have some HIGHLY sensitive data that I need to expose to Android and iPhone clients. My backend is completely in .NET. I'm trying to figure out the best approach to providing this sensitive data to the iPhone and Android platforms.
I'm getting lost in all of the opinions circling around the internet. Some say use SOAP because it is an established industry standard. Plus, it supports authentication. On the other hand, others say avoid SOAP at all costs and use REST. But, I'm not sure how to use REST in a way that a) requires authentication b) is accessible to both Android and iPhone. WCF seems like the best approach for REST. But I have no clue to securely exchange data with the Android and iPhone client applications.
Can someone point me to some documentation and/or share thoughts on how to best do this? I understand the general concepts. It's just there are SOOOO many acronyms and technologies that I'm not sure which is an intelligent approach. My main concerns are 1) protecting my data 2) exposing to iPhone and Android client applications that I'm writing.
Thank you for your help!