Security

AJAX Security

Fri, 24 Oct 2008 05:45:00 EDT

In biology they are called proviruses, chunks of malicious genetic code encased by proteins. When one invades a cell, it embeds itself in the host's own genes. Whether for a living cell or an AJAX application, effective security can be a matter of life or death. And whether the invader is a piece of viral DNA or a string of evil-minded code, the effects can be devastating.

AJAX and RIA Widgets

Tue, 30 Sep 2008 03:00:00 EDT

By producing a popular RIA widget you can distribute your code to millions of users practically overnight. Most widgets are designed to gather data from the web and then present that data to the user. In order to enable this functionality, Google Gadgets for example support a rich programming model based on based on JavaScript and the Gadgets' API. Unfortunately, rich platforms tend to lead to programming errors and security issues. The users of a poorly written RIA widget can have their online accounts breached, web site passwords compromised, local computer data stolen, and even lose control of their computer. This presentation, via code snippets, flow diagrams, and other means, discusses how to write an RIA widget that avoids these pitfalls.

All-New AJAX Security Bootcamp Next Week at AJAXWorld in New York

Mon, 18 Feb 2008 14:00:00 EST

Being held for the first time on March 18, 2008 at the historic Roosevelt Hotel in New York City, AJAXWorld Security Bootcamp is a compelling, intensive, one-day, hands-on training program that will teach Web developers, Web designers, and other Web professionals how to build secure AJAX applications and demonstrate what the best practices are to mitigate security problems in AJAX apps. It is led by one of the world's foremost AJAX security experts and popular teachers, Billy Hoffman.

Application Security in AJAX

Sun, 07 Oct 2007 09:30:00 EDT

If you have evaluated AJAX (Asynchronous JavaScript and XML) for your next Web application development project, then you probably have read or heard a great deal about AJAX security concerns and the claim that AJAX increases the attack surface for hackers. If you are a skilled security developer, you might wonder whether the AJAX security problem originates in the technologies involved or whether lack of security in AJAX is a misconception. Security threats like SQL injection, cross-site scripting (XSS), message spoofing, and failed input validation existed before in Web applications and have been solved many times since then.

Application Security in AJAX

Fri, 21 Sep 2007 18:00:00 EDT

If you have evaluated AJAX for your next Web application development project, then you probably have read or heard a great deal about AJAX security concerns and the claim that AJAX increases the attack surface for hackers. If you are a skilled security developer, you might wonder whether the AJAX security problem originates in the technologies involved or whether lack of security in AJAX is a misconception.

Security and AJAX

Wed, 18 Oct 2006 13:00:00 EDT

Flexible software development approaches such as AJAX are making it easier for developers to deliver fast and responsive interactive Web applications. With AJAX, users no longer have to wait while an entire Web page reloads after they make a change. This performance shift allows new data to be called up almost as soon as it is input.