How does the client package protect against third parties?
A cryptographically secure key pair is exchanged with your site when you first install the SiteDash Client extra. The private key is kept by SiteDash and stored with encryption, while the associated public key is transferred to your site.
Whenever SiteDash requests information from (or attempts to perform an action on) your site, it signs that request and its parameters with a cryptographic signature, derived from the Private Key that is only known to SiteDash. Your site will then use the Public Key to verify the integrity of the request. If the signature cannot be verified, your site will refuse to provide information or to execute an action on your behalf.
For added security, we recommend that you serve your site over HTTPS exclusively.