Why Webkit is the New IE6 (The Trap of Vendor Pref...

Windows 8: The Facts About ARM, Metro, and the Blu...

Code Migrations Evolved: EF 4.3 Released

IE Blog Tries to Make Case for Metro-Style Apps
Trending: Scala · Vagrant · CSS · PyPy · iOS · WP7 · IndexedDB · ASP.NET · Heroku · Amazon Cloud · Cloud Foundry · Python

Advanced Web Application Security

  • submit to reddit
Schalk Neethling
07/27/2008
Total Views: 6028

The security landscape has changed dramatically in the past 12 months. Unless you are aware of CSRF, Javascript Highjacking and the many ways to fool an XSS filter, it’s likely that your web application will not be secure. Attackers used to concentrate on ActiveX, but now Javascript, CSS and even simple HTML elements are used against websites. This session, presented at the Grails eXchange 2007, will outline the challenges facing the inhabitants of this strange word called Web 2.0 and the options for protection, from the point of view of both site owners and web users.

Joe Walker, works on advanced development techniques such as Ajax and is the creator of DWR - Direct Web Remoting - the most popular Ajax toolkit for Java.

References
Reference: 
SoftDevTube - Advanced Web Application Security
0
Average: 4 (1 vote)

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)

Comments

Steven Baker replied on Sun, 2008/07/27 - 8:06pm

how is this even advanced... i want my 54 minutes back

rob desbois replied on Mon, 2008/07/28 - 4:38am

PDF of presentation available here: http://developers.sun.com/learning/javaoneonline/j1sessn.jsp?sessn=TS-5302&yr=2008&track=nextweb

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.