@ Christian.. I think you need to read this thread again ;)
The issue isnt so much CF.. RTMP is secure enough by it self.
What were talking about here, is the KEYPAIR for FILE (bucket streaming) streaming. that is generated by S2Member. For download security reasons, this keypair should not be valid after it has been used 1 time, or it should most definately expire in a matter of seconds.
Example from content source is:
{file: 'http://dnl.XXXXXXX.dk/FILE.mp4?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cDovL2RubC5tb3ZpZWxvY2tlci5kay9jb250YWN0JTJGY29udGFjdF8xNi05XzE4MDBrXzcyMHAubXA0IiwiQ29uZGl0aW9uIjp7IklwQWRkcmVzcyI6eyJBV1M6U291cmNlSXAiOiIxOTMuNDcuODEuODUvMzIifSwiRGF0ZUxlc3NUaGFuIjp7IkFXUzpFcG9jaFRpbWUiOjEzNjMzNjIxOTl9fX1dfQ__&Signature=0cT99PF~xQyjtrfkFfAiLaQAGxXgPsIpi3FHgVnKXZ~b1YadWOI5Cs7V0AxwasOcuJaQiQ9j64G47RTs-MlB7Z5VMMJmWniqDF1XMtms3kCSPEY~AC0Wvv4zFKgY4YkOAbcvnbO46o9ofCDsDVH81LrYDSfxDIrSvcawTe9oFYg_&Key-Pair-Id=APKAICEBU5HLY5KQ67JA'}
If users grab this code, they can distribute it around the net, and/or download YOUR video file.
This has nothing to do with RTMP streaming as you suggest in your response above.
So, like I said, to better protect our content, you should tell us how, or develop a setting that would render the Key-Pair useless after 1 click, or expires after.. lets say 10 seconds.. Preferably, it should expire after 1st click.