Is firebase JavaScript SDK secure over network?

Question

Setting up Firebase Web JavaScript project. Firebase Authentication allows to authenticate users. But are Firebase SDK methods secure over various networks/routers ?

I am new to Firebase. I am trying to understand different functions/features provided by Firebase. For example, Firebase Authentication (Guide) helps to login/logout and much more a user. In one of its methods (Guide) I can see it uses input username/password: firebase.auth().createUserWithEmailAndPassword(email, password) to check if credentials are correct. So, when this information moves over networks to back end instances, is this secure ?

firebase.auth().createUserWithEmailAndPassword(email, password).catch(function(error) {
  // Handle Errors here.
  var errorCode = error.code;
  var errorMessage = error.message;
  // ...
});

It would be great if someone can share how the data is moved across with firebase js sdks and if it's secure ?

How do you think it's different any other web application with authentication? They all need to send email and password. You can encrypt it on browser but encryption algorithm will be in same browser and reachable — Doğancan Arabacı, Jun 20 '19 at 11:18

Doug Stevenson · Answer 1 · 2019-06-20T04:10:53.913

2

All traffic to and from Firebase services through the provided SDKs is encrypted in transit. It can't be modified or decrypted, as is the case for any communications using SSL, which is a very common global internet standard for secure communications.

edited Jun 20 '19 at 04:10

answered Jun 20 '19 at 04:05

Doug Stevenson

297,357
32
422
441

Is firebase JavaScript SDK secure over network?

1 Answers1

Linked