« US Government Security Suggest "No AJAX" | Main | Peepel, An AJAX Office for People »

Create Secure GWT Applications

Dan Morrill, Google Developer Programs, posted a very good article on Security for GWT Applications. The article explores the different JavaScript vulnerabilities : Leaking Data, XSS, Forging Requests, JSON and XSRF; and how GWT developers can fight against these security issues :

One of the key goals of GWT is to let developers focus on their users' needs, instead of on JavaScript and browser quirks. However, the consequences of a security exploit can be serious, so it's important that GWT developers understand how such attacks work, and how to prevent them.

To help get the word out, I've put together an article on my experiences. Eventually we'll merge its contents into the GWT Developer Documentation, but we thought that it was important to get this out to GWT developers rather than wait for the next documentation update.

We have to announce today the worldwide day of AJAX Security. via GWT blog

Posted by Hatem on April 3, 2007 1:11 AM to AJAX Security | Google Web Toolkit |

Bookmark this article at these sites
Comments
1

Hi,

I would like to introduce a new technology called http://www.visualwebgui.com which provides a unique way to create AJAX applications by providing full WinForms like development including design time support. The architecture eliminates most of AJAX soft spots by simply
returning back to server based computing but still having a dynamic AJAX based UI. It also has been said by developers to boost productivity to R.A.D. levels with out limiting your options.

Guy

Site icon Posted by Guy | April 10, 2007 3:11 PM | Reply

2

Guy, see this http://ajax.phpmagazine.net/2006/04/visual_webgui_a_new_unique_apr.html

Site icon Posted by Hatem | April 10, 2007 3:31 PM | Reply

Post a comment





(Email will remain hidden)





Please enter the security code you see here




Related entries
Email to a friend
Email this article to:


Your email address:


Message (optional):