AJAX Experts Tackle Security, Other IssuesBy Darryl K. Taft | Posted 2006-05-11 Email Print
Modernizing Authentication — What It Takes to Transform Secure Access
SAN FRANCISCOA panel of experts broke down many of the key issues surrounding AJAXincluding security, tooling, support for devices and, not a small question, what will Microsoft doat the AJAX Experience conference here May 10.
Security ranked among the chief concerns among the audience, with some questioning whether reports that AJAX opens users to security problems are true.
Panelist Alex Russell, co-founder and project lead for The Dojo Toolkit, a popular AJAX framework, said, "It's worth noting that the fundamental problems with browser security and Web application security haven't changed in five yearsmost rely on a single root of trust, and AJAX doesn't change that. Wider spread use of cross-domain content distribution," which is not new with AJAX, is part of the issue. "The short version is still, Don't trust the client."
When asked what tools they liked to use to do AJAX development, the panelists listed the programming editors often referred to as tools for "real men" programmers: Vi, Vim (also known as "Vi Improved") and Emacs. However, after some prodding from Almaer, the group listed a few tools specific to AJAX-style development.
Read the full story on eWEEK.com: AJAX Experts Tackle Security, Other Issues