Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.
Securing Ajax Applications
Publisher: O'Reilly Media, Inc.
Pub. Date: July 11, 2007
Print ISBN-13: 978-0-596-52931-4
Print ISBN-10: 0-596-52931-7
Pages in Print Edition: 256
Subscriber Rating:
[2 Ratings] Subscriber Reviews
Overview
Ajax applications should be open yet secure. Far too often security is added as an afterthought. Potential flaws need to be identified and addressed right away. This book explores Ajax and web application security with an eye for dangerous gaps and offers ways that you can plug them before they become a problem. By making security part of the process from the start, you will learn how to build secure Ajax applications and discover how to respond quickly when attacks occur. Securing Ajax Applications succinctly explains that the same back-and-forth communications that make Ajax so responsive also gives invaders new opportunities to gather data, make creative new requests of your server, and interfere with the communications between you and your customers. This book presents basic security techniques and examines vulnerabilities with JavaScript, XML, JSON, Flash, and other technologies -- vital information that will ultimately save you time and money. Topics include:
An overview of the evolving web platform, including APIs, feeds, web services and asynchronous messaging
Web security basics, including common vulnerabilities, common cures, state management and session management
How to secure web technologies, such as Ajax, JavaScript, Java applets, Active X controls, plug-ins, Flash and Flex
How to protect your server, including front-line defense, dealing with application servers, PHP and scripting
Vulnerabilities among web standards such as HTTP, XML, JSON, RSS, ATOM, REST, and XDOS
How to secure web services, build secure APIs, and make open mashups secure
Securing Ajax Applications takes on the challenges created by this new generation of web development, and demonstrates why web security isn't just for administrators and back-end programmers any more. It's also for web developers who accept the responsibility that comes with using the new wonders of the Web.
Subscriber Reviews
Average Rating: 
Based on 2 Ratings
"Authoritative Security Recommendations" - by luzmcosta on 13-FEB-2012
Reviewer Rating:
This text is a solid overview of what to do to secure your AJAX applications. It touches on everything, giving readers a starting place for research into any number of security-related topics, as well as some essential foundational knowledge. The author's voice isn't particularly captivating but it's clearly authoritative, offering several interesting bits for the intermediate while offering guidance to the noob, so four stars.
If you're looking for a text that will go into session security's depths, show you how to execute the security concepts this text recommends, or explains the code it offers beyond a one-liner, this is not the text you should read.
Report as Inappropriate
Browse Similar Topics
Top Level Categories:
Digital Media
Information Technology & Software Development
Sub-Categories:
Digital Media > Web Design & Development
Information Technology & Software Development > Web Development
Web Development > AJAX
Table of Contents
Download Chapter
0 TokensColophon
Extras
The publisher has provided additional content related to this title.
Description | Content |
|---|---|
Visit the catalog page for Securing Ajax Applications |
|
Visit the errata page for Securing Ajax Applications |
|