best practice for saving statistics for leaderboards

Question

question

terrypapamarkou asked May 16, '18

best practice for saving statistics for leaderboards

hi,

In the documentation for the statistics it says

"Find and activate "Allow client to post player statistics"

But please note that doing so disables a security layer for your title, allowing players to post arbitrary scores to all of their statistics. If your game has any competitive play aspect, we would recommend that you never post statistics from the client."

So my question is, what is the best and most secure approach for saving a player stat (eg Trophy Count)? Should I send the new value to a cloud script that can run additional checks (eg time since last statistic change, how big is the change since the last update etc) before going ahead and saving the new value?

Thanks

apis CloudScript Leaderboards and Statistics

10 |1200

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Answer 1 · 2018-05-16T13:57:06Z

brendan answered May 16, '18

The best and most secure way would be to have a custom game server (dedicated server) which the client connects to, and which controls the authoritative simulation of the game session. It would report statistics directly, and you would not turn on the client's ability to write stats. That way, you know that stats are always correct (as much as reasonably possible).

The next best would be to use Cloud Script. So, you'd have the client report stats at the end of a session, and the Cloud Script would check what it can - time since last stat report, actual value of the stats reported, etc. - to try to block players from cheating by reporting bogus stats.

1

10 |1200

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

terrypapamarkou commented · May 17, 2018 at 09:39 PM

OK thanks Brendan.

0 ·

question