Myth-Busting Ajax (In)Security

Jeremiah Grossman has written an excellent article over at WhiteHat security that addresses a lot of the hype surrounding Ajax security.

I must admit that as I include Ajax more in my applications at work Security is a question I always add to discussions and design considerations. If you have ever wanted to get another viewpoint on the whole Ajax security issue I suggest you have a read of Jeremiah’s article.

The hype surrounding AJAX and security risks is hard to miss. Supposedly, this hot new technology responsible for compelling web-based applications like Gmail and Google Maps harbors a dark secret that opens the door to malicious hackers. Not exactly true. Even the most experienced Web application developers and security experts have a difficult time cutting through the buzzword banter to find the facts. And, the fact is most websites are insecure, but AJAX is not the culprit. Although AJAX does not make websites any less secure, it’s important to understand what does……

[From the WhiteHat Security website]

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: