Whole Network Most Recent TOP10 AJAX E-Commerce Programming Security

« The Java FindBugs Project... | Main | Free AJAX API Offered By... »

Security Threats Posed By Ajax

Filed in archive AJAX by gautam on June 12, 2006

Although rated as quite useful, AJAX introduces a new vulnerability into websites and user interactions. The problems are caused when downloaded JavaScript code is executed on the client. A number of security problems were caused due to Microsoft Visual Basic developer's use of ActiveX links

controls in web applications. This could cause intruders to substitute their own executables in the download and run them on unsuspecting user's PCs.

As per Fima Katz, CEO, Ajax integrated development environment supplier, the problem is with regard to careful design and not interactive technology. The client should be kept minimal along with restrictions on what JavaScript is allowed to do on it. In case the application is opened to the world then the business logic downloaded to the client should be kept to a minimum and business logic must be executed on the internet server as it can be easily protected against intrusion and code injection.

Permalink: Security Threats Posed By Ajax
Tags: AJAX Security ajax security java posed+ajax threats+posed security+threats

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/24464

Related Entries:

AJAX Security Issues Discussed - 15 February 2006

Security Risk Management - 10 April 2006

How to Make Ajax Secure - 18 September 2006

Ajax and the Security Challenges Posed - 23 October 2006

entry_title - 00 December 0000

Ajax security issues should not be ignored - 20 August 2007

Vote for Security Threats Posed By Ajax:

Currently 9.00/10
1
2
3
4
5
6
7
8
9
10

Rating: 9.0 out of 2 vote(s) cast.

CW Toolbar
RSS	\| See all blog subscribe options
Google	\| What is RSS?
Yahoo!
Addthis
Bloglines
Newsletter

Advertisement - Book yours here.

Check out our Sponsored Blogs!
The Mobile Technology Weblog
latest news from

Maintainable JavaScript videos are now available.

Reinhardt: a Client-side Dispatch Framework

IE8 and Standards

An Interesting Twist on a Pastebin

Chofter: search mashup using all things Dojo

How does the scoping work with eval()?

Exclusive iPhone in Action Chapter Downloads

Antisocial: 3D in Canvas with Sound

Pimp My Site with CSS and Prototype

The myths and reality of XHTML

Aptana Jaxer 1.0 RC

Extreme JavaScript Performance; John Resig on Ars

navigator.geolocation now available in Firefox via Geode

Pyjamas: GWT for Python

IE 8 beta 2 Ajax features

Regex performance in modern JSVMs

Dojo 1.2 Final Release

SMIL 3.0 Reaches Proposed Recommendation

Ajaxified Body; When to refresh the page

js.io: client library for networking

Get the Newsletter

Browser Plug-ins
Client-side Frameworks
Interaction Design/
Graphic Design/User Experience
JavaScript
Programming Techniques
Security
Server-side Frameworks

Advertisement -
Book yours here..

Our Editors recommend
Ajaxian
Bokardo
Bruce Eckel's Weblog
Daniweb
Java Posse
Joel on Software
Martin Fowler's Bliki
Mashable
Rick Hightower's Sleepless Night in Tucson
Service-Oriented Architecture
TechCrunch
techno.blog ("Dion")
Tinou's Work Blog
Tor Norbye's Weblog

Contributors (Last 90 days)
Gautam Chhabra (36)
This site has 649 entries and is powered by Creative Weblogging since September 2005.
Do you want to start or edit an existing blog for us and get paid? More info.
Do you want to advertise on this blog? We have great ideas!
Do you have tips for us? Send them!

Discover Java Entrepreneur on your cell phone! Simply type the URL of your favorite blog in your mobile browser.

Advertise with us
Learn more about our advertising options, visit our shop or give Luis a call at +1 (650) 331 8047.
NEW you can also chat with us.

Security Cameras
Would you like to have a new interactive marketing channel for your company? Learn more about Sponsored Blogs with Creative Weblogging. See how we helped istockphoto.com and others.
Do you have a blog with more than 50k page views from the US? Let us market your blog.

Advertisement
Book yours here.

Testimonials
'Great looking blog. Good quality posts with useful information.'

Other blogs in the same channel in the Creative Weblogging Network

Advertisement -
Book yours here..

Disclaimer
Some of the contents of this site are protected Creative Weblogging Ltd. 2004-2008.

Advertisement - Book yours here..

Add your response to Security Threats Posed By Ajax:
Name: *	Email: (will never be shown)*	URL:

(* marked fields are required)
Notify me if more comments appear?	Subscribe to Java Entrepreneur newsletter? (Newsletters are sent out weekly).	Remember me
Security Code: * (Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)


We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

Tell a friend about Security Threats Posed By Ajax
Recipient email:*	Your email:*

(* Both email addresses are required for sending this article. They will never be shown or used for any marketing purposes)
Please enter a message which will be shown together with the article:

Security Code: (Please help us to sort out spam.)

Security Threats Posed By Ajax

Filed in archive AJAX by gautam on June 12, 2006

Related Entries:

Vote for Security Threats Posed By Ajax:

Add your response to Security Threats Posed By Ajax:

Tell a friend about Security Threats Posed By Ajax

Check out our Sponsored Blogs!

latest news from

Our Editors recommend

Contributors (Last 90 days)

Categories

Archives

Advertise with us

Most popular

Testimonials

Recent Comments

Other blogs in the same channel in the Creative Weblogging Network

Technology

Disclaimer

Find more recent entries from our other publications:

The CIO Weblog

HackITLinux

P2P File Sharing

Nanotechbuzz

The VoIP Weblog

BlogWealth