Very interesting read! Thank you.<p>What is the point of all this? Why go through the trouble to obfuscate a mundane http request/response versus spending that effort ensuring the api is properly secured, and data model architected in an optimal way?