Ajax Security By Billy histrion
Publisher: Addison-Wesley 2007 | 504 Pages | ISBN: 0321491939 | PDF | 12 MB
More and more Web sites are existence rewritten as Ajax applications; modify tralatitious screen cipher is apace agitated to the Web via Ajax. But, every likewise often, this transformation is existence prefabricated with careless reject for security. If Ajax applications aren’t fashioned and coded properly, they crapper be hypersensitive to farther more chanceful section vulnerabilities than customary Web or screen software. Ajax developers desperately requirement counselling on securing their applications: noesis that’s been virtually impracticable to find, until now.
Ajax Security systematically debunks today’s most chanceful myths most Ajax security, illustrating key points with careful housing studies of actualised misused Ajax vulnerabilities, ranging from MySpace’s Samy insect to MacWorld’s word cipher validator. Even more important, it delivers specific, up-to-the-minute recommendations for securing Ajax applications in apiece field Web thinking module and environment, including .NET, Java, PHP, and modify Ruby on Rails. You’ll see how to:
· Mitigate unequalled risks related with Ajax, including too granular Web services, covering curb line tampering, and touching of information logic
· Write newborn Ajax cipher more safely—and refer and mend flaws in existing code
· Prevent aborning Ajax-specific attacks, including javascript robbery and continual hardware theft
· Avoid attacks supported on XSS and SQL Injection—including a chanceful SQL Injection var. that crapper select an whole backend database with meet digit requests
· Leverage section shapely into Ajax frameworks same Prototype, Dojo, and ASP.NET AJAX Extensions—and discern what you ease staleness compel on your own
· Create more bonded “mashup” applications
Ajax Security module be an vital inventiveness for developers writing or maintaining Ajax applications; architects and utilization managers thinking or artful newborn Ajax software, and every cipher section professionals, from QA specialists to onset testers. http://raload.com/it-ebooks/64194-ajax-security-by-billy-hoffman.html
Tags: Engineering, Programming