We help IT Professionals succeed at work.
Get Started

Client Server secure authentication (Can GUID, serial or MAC be read from web page?)

projects
projects asked
on
237 Views
Last Modified: 2015-03-03
We are building a client server based application where clients are win 7/8 desktops connecting to a server on the internet to exchange data. This exchange can be the client needing to check some settings and mostly to send some data.

At the moment, we are using curl to send the data to a php app over https.

The problem is as follows.

We want to get some unique information from the client so that we can confirm it's authentication now and then. This means that the client should send something like its GUID and/or system serial number.

Wondering if it would be possible to read a windows GUID, and/or it's system serial number and/or it's MAC address from a web page? If so, we would have the user connect to a support page when ever needed so that we can verify some information including the above.

-Not exclusive to IE, meaning, firefox for example could work as well
-Not dependent on a browser extension
-User could agree or prevent the action

The second part of this question is about credentials. At the moment, we are using a name/password being sent over https using curl. The connection is also using a cert at both ends. However, managing certs is becoming a bit of a nightmare and much of what I have read on the internet says instead of using name/passwords, use certificates.

Therefore, I am trying to understand how we might be able to change our authentication method to use certificates, perhaps, instead of name/pass?

Another problem that we are having is that someone could copy the software running on one desktop to another desktop and we need to prevent this from happening so need some way of preventing this.

Not really sure how others deal with such issues so thought I would ask the pros.

Thanks.
Comment
Watch Question
Consultant
CERTIFIED EXPERT
Commented:
This problem has been solved!
Unlock 1 Answer and 11 Comments.
See Answer
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE