Comments on: Book recommendation: Ajax Security by Hoffman and Sullivan http://pathfindersoftware.com/2008/01/book-recommenda/ The Fastest Way to Launch Successful Software Thu, 19 Jan 2012 16:36:03 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Marko Grönroos http://pathfindersoftware.com/2008/01/book-recommenda/#comment-7594 Marko Grönroos Thu, 17 Jan 2008 13:48:54 +0000 http://www.pathf.com/blogs/?p=111#comment-7594 <p>Using a server-side Ajax framework should help greatly with security for at least two reasons. First, all business logic and practically all UI logic is handled server-side. This is important not just for preveting cracking, but also for keeping the business logic secret. Another reason is that when there is usually no application-specific client-side code, but just a client-side engine of the framework, the engine can be generally strenghtened much stronger.</p> <p>IT Mill Toolkit (<a href="http://www.itmill.com/" rel="nofollow">http://www.itmill.com/</a> ) is an example of such server-side frameworks. It essentially lets you forget Ajax and should handle all Ajax-related issues, including much of the basic security, without having to reconsider them for every application. It is of course impossible to promise that anything is secure, at least before long exposure to attacks, but using a solid framework is a good start.</p> Using a server-side Ajax framework should help greatly with security for at least two reasons. First, all business logic and practically all UI logic is handled server-side. This is important not just for preveting cracking, but also for keeping the business logic secret. Another reason is that when there is usually no application-specific client-side code, but just a client-side engine of the framework, the engine can be generally strenghtened much stronger.

IT Mill Toolkit (http://www.itmill.com/ ) is an example of such server-side frameworks. It essentially lets you forget Ajax and should handle all Ajax-related issues, including much of the basic security, without having to reconsider them for every application. It is of course impossible to promise that anything is secure, at least before long exposure to attacks, but using a solid framework is a good start.

]]> By: Thomas http://pathfindersoftware.com/2008/01/book-recommenda/#comment-7593 Thomas Thu, 17 Jan 2008 08:03:48 +0000 http://www.pathf.com/blogs/?p=111#comment-7593 <p>Thanks Brian for this in-depth review.</p> Thanks Brian for this in-depth review.

]]> By: Bookwise http://pathfindersoftware.com/2008/01/book-recommenda/#comment-7592 Bookwise Wed, 16 Jan 2008 21:18:55 +0000 http://www.pathf.com/blogs/?p=111#comment-7592 <p>Thanks for the detailed review. I was thinking about getting this book but I wanted to wait until I could find a review that went into specifics. I am especially interested in the material on CSS. This looks great.</p> Thanks for the detailed review. I was thinking about getting this book but I wanted to wait until I could find a review that went into specifics. I am especially interested in the material on CSS. This looks great.

]]>