Schmitt Jason

Secure ASP.NET AJAX Development (Digital Short Cut) (eBook, PDF)

• Format: PDF

Produktbeschreibung

Many organizations are diving headfirst into AJAX technologies to make their Web applications richer and more user friendly, but they often do not realize the security implications of the AJAX approach. Microsoft's ASP.NET AJAX technologies, commonly known by the codename "Atlas," and other AJAX frameworks are changing the way Web applications look and are developed, but Web developers are often unaware of the security risks they are introducing into their applications with these emerging technologies.

AJAX fundamentally changes the user experience and server interaction in Web applications, so developers may be taking otherwise secure applications and opening up new angles of attack for hackers. This short cut outlines the increased security risk inherent with AJAX technologies and addresses how developers can use Microsoft's ASP.NET AJAX to implement secure AJAX applications. After discussing Web application security pitfalls that are common in AJAX development, given its focus on increased client processing and more frequent access to Web services and databases, the author focuses on a few key security principles for AJAX developers--demystifying AJAX security and teaching how to develop secure AJAX applications using ASP.NET AJAX Extensions. The short cut concludes with a walkthrough of security testing best practices that will help effectively uncover security problems in AJAX applications during development and testing.

What This Short Cut Covers 3

Section 1: AJAX, ASPNET, and Atlas 4

Section 2: AJAX Security Pitfalls 19

Section 3: Securing ASPNET AJAX 44

Section 4: ASPNET AJAX Security Testing 81

About the Author 92

---

Dieser Download kann aus rechtlichen Gründen nur mit Rechnungsadresse in A, B, BG, CY, CZ, D, DK, EW, E, FIN, F, GR, HR, H, IRL, I, LT, L, LR, M, NL, PL, P, R, S, SLO, SK ausgeliefert werden.

Produktdetails

• Verlag: Pearson ITP
• Seitenzahl: 93
• Altersempfehlung: ab 18 Jahre
• Erscheinungstermin: 17. November 2006
• Englisch
• ISBN-13: 9780321498106
• Artikelnr.: 56955435

Autorenporträt

Jason Schmitt is group product manager for SPI Dynamics, the expert in Web application security assessment and testing. He is responsible for overseeing product strategy and direction for the company's developer and quality-assurance products, which are aimed at helping developers code more secure Web applications. Jason has a long history of work expertise in product management, product development, and technical consulting. Prior to joining SPI Dynamics, Jason held positions at EzGov, where he was a senior manager of product engineering, managing the product development team in the design, implementation, and delivery of Web application framework and development products for e-government. In addition, Jason was consulting manager for EzGov, managing Web application projects and programs for federal, state, and international governments. Prior to EzGov, Jason was a technical consultant for e-commerce provider, Ariba, and a consultant for telecom companies for Andersen Consulting (Accenture). Jason is a frequent speaker and expert resource for the press, and he writes for industry publications on secure software development. He has an MBA from Georgia State University and a BS in mechanical engineering from the Georgia Institute of Technology.