Return Data from Livecode Server

[ghettocottage]

/**this might be a stupid question***?

I have been tinkering with encrypting/decrypting and encoding/decoding data from a Livecode Desktop Application to Livecode Server. Great. I have a good grasp on the basics, and can successfully encrypt passwords, encrypt data with those passwords, and then decrypt everything on the server, do stuff with that data, and return data from a database on the same server.

My question: should the return data also be encrypted? and then decrypted on my application, or is this not necessary?

I have an ssl cert on my server, and use https:// in the address I am sending to, but I don't have enough grasp on the concept to know if the data I am getting back from my server is in danger of being intercepted by men wearing black clothes and smoking cigarettes.

[jacque]

The men in black clothes can intercept the data in either direction, so I'd say encryption would depend on how secure you need it to be. If it's sensitive, then encrypt it.

[ghettocottage]

The men in black clothes can intercept the data in either direction, so I'd say encryption would depend on how secure you need it to be. If it's sensitive, then encrypt it.

Thanks. That helps.

The encryption to the server (and subsequent filtering I have set up) helps prevent people from sending random queries to my server, guards against SQL injections, etc., and protects the data being sent

If the return data is not sensitive information, then the men in black can have all the information about pet sizes, excersise routines, or whatever the application is for.
If the return data is client information, credit card receipt, then I should encrypt the return data. I suppose I should use a seperate set of rsa keys for return data.