Ajax Security

Ajax Security

4.11 - 1251 ratings - Source

The Hands-On, Practical Guide to Preventing Ajax-Related Security Vulnerabilities More and more Web sites are being rewritten as Ajax applications; even traditional desktop software is rapidly moving to the Web via Ajax. But, all too often, this transition is being made with reckless disregard for security. If Ajax applications arena€™t designed and coded properly, they can be susceptible to far more dangerous security vulnerabilities than conventional Web or desktop software. Ajax developers desperately need guidance on securing their applications: knowledge thata€™s been virtually impossible to find, until now. Ajax Security systematically debunks todaya€™s most dangerous myths about Ajax security, illustrating key points with detailed case studies of actual exploited Ajax vulnerabilities, ranging from MySpacea€™s Samy worm to MacWorlda€™s conference code validator. Even more important, it delivers specific, up-to-the-minute recommendations for securing Ajax applications in each major Web programming language and environment, including .NET, Java, PHP, and even Ruby on Rails. Youa€™ll learn how to: Am Mitigate unique risks associated with Ajax, including overly granular Web services, application control flow tampering, and manipulation of program logic Am Write new Ajax code more safelya€”and identify and fix flaws in existing code Am Prevent emerging Ajax-specific attacks, including JavaScript hijacking and persistent storage theft Am Avoid attacks based on XSS and SQL Injectiona€”including a dangerous SQL Injection variant that can extract an entire backend database with just two requests Am Leverage security built into Ajax frameworks like Prototype, Dojo, and ASP.NET AJAX Extensionsa€”and recognize what you still must implement on your own Am Create more secure a€œmashupa€ applications Ajax Security will be an indispensable resource for developers coding or maintaining Ajax applications; architects and development managers planning or designing new Ajax software, and all software security professionals, from QA specialists to penetration testers.Ajax Security systematically debunks todaya€™s most dangerous myths about Ajax security, illustrating key points with detailed case studies of actual exploited Ajax vulnerabilities, ranging from MySpacea€™s Samy worm to MacWorlda€™s ...


Title:Ajax Security
Author: Billy Hoffman, Bryan Sullivan
Publisher:Addison-Wesley Professional - 2007-12-06
ISBN-13:

You must register with us as either a Registered User before you can Download this Book. You'll be greeted by a simple sign-up page.

Once you have finished the sign-up process, you will be redirected to your download Book page.

How it works:
  • 1. Register a free 1 month Trial Account.
  • 2. Download as many books as you like (Personal use)
  • 3. Cancel the membership at any time if not satisfied.


Click button below to register and download Ebook
Privacy Policy | Contact | DMCA