We are developing an AAA game using unreal engine 5.3 with the Pixel Streaming feature to make the game available via company intranet for the employees to access via browser prompting with Windows Authentication. And the game will be hosted in Windows dedicated server. So for hosting, we have received Endorsement Questionnaire requirement from IT , since we are new to the Unreal Engine platform we are seeking your support to fill with your expert knowledge on this area. Below are the questions, please help us fill them.
Data Protection:
What information is considered sensitive in the application, and how is it being protected? How
are user credentials handled?
Answer:
What information is kept at the client machine? Is this information cached temporarily or kept
permanently, and how can this information be regenerated?
Answer:
What encryption and hashing algorithms are used by the application? What are they used to
protect?
Answer:
Is data being protected during storage? How is this being achieved?
Answer:
How does the application pass data across the application? What strategy is used to decide
what gets passed through GET requests, POST requests, cookies, hidden form fields, etc.
Answer:
Does the application have any demo or user configuration set up? If so, what is the process of
removing these users or configurations?
Answer:
Does the application protect against clickjacking? If so, how does it achieve that?
Answer: