Both Flash and Ajax contain known potential security holes. Nevertheless, developers rely on them for building an interactive Web presence. IBM has added AppScan to its Rational tools line to in a bid to cope with new vulnerabilities.Rational AppScan can both scan and continuously monitor interactive Web applications and SOA services built as Web services to spot potential...
Read more »
Ajax security
let’s discuss ajax security implications. Articles and solutions on Ajax security vulnerabilities in the realm of web applications. Ajax is becomming very popular now a days.
Both Flash and Ajax contain known potential security holes
Who is using Ajax
Google is making a huge investment in developing the Ajax approach. All of the major products Google has introduced over the last year — Orkut, Gmail, the latest beta version of Google Groups, Google Suggest, and Google Maps — are Ajax applications. (For more on the technical nuts and bolts of these Ajax implementations,...
Read more »
Ajax is a method by which developers bring end users closer
Ajax is a method by which developers bring end users closer to interfaces being exposed by Service Oriented Architectures. The push to create loosely coupled service-based architectures is a promising idea with many benefits in enterprise environments. As more of these service-based “endpoints” become developed, and as Ajax introduces the ability to push more...
Read more »
Ajax bring end user and developer close
Ajax is a method by which developers bring end users closer to interfaces being exposed by Service Oriented Architectures. The push to create loosely coupled service-based architectures is a promising idea with many benefits in enterprise environments. As more of these service-based “endpoints” become developed, and as Ajax introduces the ability to push more...
Read more »
Examining ASP.NET AJAX JavaScript source code
If you examine the ASP.NET AJAX JavaScript source code, you’ll see lots of “===†compare operators where you’d expect to find the normal “==†operator. Both will evaluate if an object is equal, but the “===†takes it another step further and validates that the objects being compared share the same identity. That means,...
Read more »
Http Status code 304 is technically a valid response code in ajax
Http Status code 304 in ajax is technically a valid response code that could be returned from the server when performing a GET. It indicates that the page has not been changed and the page in the browser’s cache should be used. In Firefox, the XMLHttpRequest status property will return “200†if the server...
Read more »
Advent of ajax applications
The advent of AJAX applications has raised considerable security issues due to a broadened
threat window brought about by the very same technologies and complexities developed. With an
increase in script execution and information exchanged in server/client requests and responses,
hackers have greater opportunity to steal data thereby costing organizations thousands of dollars
in lost revenue, severe fines,...
Read more »
Ajax vulnerabilities
Although a most powerful set of technologies, developers must be aware of the potential security holes and breeches to which AJAX applications have (and will) become vulnerable.
According to Pete Lindstrom, Director of Security Strategies with the Hurwitz Group, Web applications are the most vulnerable elements of an organization’s IT infrastructure today. An increasing number...
Read more »
Who is using ajax
Google is making a huge investment in developing the Ajax approach. All of the major products Google has introduced over the last year — Orkut, Gmail, the latest beta version of Google Groups, Google Suggest, and Google Maps — are Ajax applications. (For more on the technical nuts and bolts of these Ajax implementations,...
Read more »
How ajax is different
An Ajax application eliminates the start-stop-start-stop nature of interaction on the Web by introducing an intermediary — an Ajax engine — between the user and the server. It seems like adding a layer to the application would make it less responsive, but the opposite is true.
Instead of loading a webpage, at the start of...
Read more »
Bridging the gap in ajax
Ajax is a method by which developers bring end users closer to interfaces being exposed by Service Oriented Architectures. The push to create loosely coupled service-based architectures is a promising idea with many benefits in enterprise environments. As more of these service-based “endpoints” become developed, and as Ajax introduces the ability to push...
Read more »
Cross site scripting
Another unfortunate truth is that attackers can be more creative (in other words, dangerous) with the use of Cross Site Scripting (XSS) vulnerabilities. Typically, attackers had to use XSS holes in a “single-threaded” world, where the attack was being carried out while the user’s browser was in a wait state. This wait...
Read more »
