...
It is strongly recommended that you limit access to your SAS accounts from applications on a trusted IP/domain. In the SAS server you can specify a white list access list of IP addresses that are valid for your account. Alternatively, the SAS does support certificates for apps using web services and WCF applications. Contact us for more information on configuring this level of security.
Account Info
Keep you account login info in a safe place and never in plain text. Always obfuscate/encrypt the Login Name and Login Key