-
Notifications
You must be signed in to change notification settings - Fork 85
Silverlight Client Configuration
This configuration applies to Silverlight clients executing inside the Silverlight plugin of desktop web browsers.
The unauthenticated entity authentication scheme will be used. The entity identity will be a randomly generated value that is unlikely to collide. In the event of a collision, entity re-authentication will occur which will also trigger user re-authentication.
Although this scheme allows entity identity harvesting and spoofing, it is used to satisfy the desire to maintain the same identity if entity re-authentication must occur.
The Netflix ID cookies user authentication scheme will be used. It is assumed the user logged in to the Netflix service over SSL at a prior time.
If a user ID token already exists at application startup, the Netflix ID cookies will be included along with the user ID token in the first MSL message to perform a user verification. This is done to ensure the user identities are still in sync. If verification fails user re-authentication will occur using the Netflix ID cookies.
The Diffie-Hellman key exchange scheme will be used.
A Netflix Original Production
Tech Blog | Twitter @NetflixOSS | Jobs
- Introduction
- Encoding & Normalization
- Cryptography
- Versioning
- MSL Networks
- Entity Authentication
- User Authentication
- Key Exchange
- Service Tokens
- Messages
- Error Messages
- Application Security Requirements
- Protocol Implementation
- Configuration Guide