Whole Network AJAX Basics conference E-Commerce Monthly Contest Programming Security

 

Security Threats Posed By Ajax

Filed in archive AJAX by gautam on June 12, 2006

Security Threats Posed By Ajax
Although rated as quite useful, AJAX introduces a new vulnerability into websites and user interactions. The problems are caused when downloaded JavaScript code is executed on the client. A number of security problems were caused due to Microsoft Visual Basic developer's use of ActiveXlinks controls in web applications. This could cause intruders to substitute their own executables in the download and run them on unsuspecting user's PCs.

As per Fima Katz, CEO, Ajax integrated development environment supplier, the problem is with regard to careful design and not interactive technology. The client should be kept minimal along with restrictions on what JavaScript is allowed to do on it. In case the application is opened to the world then the business logic downloaded to the client should be kept to a minimum and business logic must be executed on the internet server as it can be easily protected against intrusion and code injection.






Permalink: Security Threats Posed By Ajax
Tags: AJAX  Security  ajax  security  java  posed+ajax  threats+posed  security+threats 

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/24464

Related Entries:

AJAX Security Issues Discussed - 15 February 2006

Security Risk Management - 10 April 2006

How to Make Ajax Secure - 18 September 2006

Ajax and the Security Challenges Posed - 23 October 2006

Ajax security issues should not be ignored - 20 August 2007





RSSrss   | See all blog subscribe options
Google google   |   What is RSS?
Yahoo! yahoo
Addthis Subscribe using any feed reader!
Bloglines Bloglines
Newsletter
Grouptivity

Use the search to look for other interesting posts



 
  • Advertise with us

  • Learn more about our advertising options or email advertising - at - creative-weblogging.com or give us a call at +1 (650) 331 4900.


  • Testimonials

  • 'Great looking blog. Good quality posts with useful information.'


  • Other blogs in the same channel in the Creative Weblogging Network







 

Tagcloud: AJAX Application Development Awards Basics Business conference E-Commerce Management Mobile Devices mobile phones Monthly Contest Personal Programming Security Service Oriented Architectures Sponsored Posts updates Web Services