Cheating the test

dirk wrote:

The bin file is also clear text.My suggestion is the do some basic encryption of the xml string, and decrypt when reading the string by the TitleManager?Since course content is written in html with no server side scripting, the end user's computer must always have access to all of the course data in some fashion.The bin file may be transfered clear text, but it's a binary file. Unless the user is a super-hacker, they're not going to be able to read it. For that matter, they shouldn't even know what the file is as it is not referenced directly in the page code. If they are a super-hacker, than encrypting it wouldn't work either ... the decryption function would have to be defined in one of the .js files anyway.