HOME JAVA & JEE OPEN SOURCE .NET WEB & RIA CLOUD & GRID ARCHITECTURE & DDD AGILE PM & SCRUM AGILE TESTING OS, MOBILE & SERVER  
Grails eXchange 2007: Joe Walker on Advanced Web Application Security
Advanced Web Application Security
The security landscape has changed dramatically in the past 12 months. Unless you are aware of CSRF, Javascript Highjacking and the many ways to fool an XSS filter, it's likely that your web application will not be secure. Attackers used to concentrate on ActiveX, but now Javascript, CSS and even simple HTML elements are used against websites. This session, presented at the Grails eXchange 2008, will outline the challenges facing the inhabitants of this strange word called Web 2.0 and the options for protection, from the point of view of both site owners and web users.

ABOUT JOE WALKER
Joe Walker works for Mozilla Labs on Bespin and other developer tools. He is the creator of DWR (Direct Web Remoting) which makes the browser/server interaction intuitive for web developers and is one of the most popular Ajax toolkits for Java. He sp
More about Joe Walker
PODCAST ADVANCED WEB APPLICATION SECURITY
Digg! StumbleUpon
RIA, AJAX & WEB COURSES
Beginning Adobe AIR - Building your first applications, ADOBE AIR INTRO
Adobe Flex for Flash Developers, ADOBE FLEX FOR FLASH DEVELOPERS
Introduction to Adobe Flex, ADOBE FLEX INTRO
HTTP Server Whizz: Advanced HTTP Server Administration, ADVANCED HTTP SERVER ADMINISTRATION
Core Ajax: Enterprise Web Development with Ajax, AJAX ENTERPRISE WEB DEVELOPMENT
Building Google Maps Applications with Rails and Ajax, BUILDING GOOGLE MAPS
Comet Evolved: HTML 5 Web Sockets & Server-Sent Events, COMET EVOLVED: HTML 5 WEB SOCKETS
Introduction to Dojo Data, Grids, Charts, and Comet , DOJO DATA, GRIDS, CHARTS, COMET
Dojo Workshop, DOJO WORKSHOP
Ajax Primer: Developing with JavaScript & DOM, JAVASCRIPT, JSON & DOM
Object-Oriented ActionScript - Advanced, OBJECT-ORIENTED ACTIONSCRIPT - ADVANCED
Object-Oriented ActionScript - Beginners, OBJECT-ORIENTED ACTIONSCRIPT - BEGINNERS
RDFa The Theory and Practice of Structured Data Publishing, RDFA THE THEORY AND PRACTICE OF STRUCTURED DATA PU
Ruby Bootcamp, RUBY BOOTCAMP
Core RoR: Web Development With Ruby on Rails, RUBY ON RAILS WEB DEVELOPMENT
Semantic Web Technologies Bootcamp, SEMANTIC WEB BOOTCAMP
RIA, AJAX & WEB PODCASTS
Wadud Ruf:Utilising WATiR to Test in an Agile Environment, Utilising WATiR
Wadud Ruf : 30th Jun 2009		 Podcast Coming Soon: Utilising WATiR to Test in an Agile Environment,
Paul Thomas:The Basics of OpenGL, The Basics of OpenGL
Paul Thomas : 22nd Jun 2009		 View Podcast: The Basics of OpenGL,
Richard Hyndman:widget framework, widget framework
Richard Hyndman : 22nd Jun 2009		 View Podcast: widget framework,
Phil Wills:Rebuilding guardian.co.uk with DDD , Rebuilding guardian.co.uk with
Phil Wills : 19th Jun 2009		 View Podcast: Rebuilding guardian.co.uk with DDD ,
Peter Mounce:Rake.NET, Rake.NET
Peter Mounce : 16th Jun 2009		 View Podcast: Rake.NET,
Abdel A. Saleh:DSL or a code smell..., DSL or a code smell...
Abdel A. Saleh : 8th Jun 2009		 View Podcast: DSL or a code smell...,
Tom Lea:2 apps, 1 test : Distributed ruby testing, 2 apps, 1 test : Distributed r
Tom Lea : 8th Jun 2009		 View Podcast: 2 apps, 1 test : Distributed ruby testing,
Patrick Sinclair:RDF in Rails, RDF in Rails
Patrick Sinclair : 8th Jun 2009		 View Podcast: RDF in Rails,
Ted Drake:Yahoo! BOSS, Build your Own Search Service, Yahoo! BOSS, Build your Own Se
Ted Drake : 2nd Jun 2009		 View Podcast: Yahoo! BOSS, Build your Own Search Service,
:Dan Lehner - UnLTD World, Dan Lehner - UnLTD World
: 29th May 2009		 View Podcast: Dan Lehner - UnLTD World,
:Nick Booth - Help me Investigate, Nick Booth - Help me Investiga
: 29th May 2009		 View Podcast: Nick Booth - Help me Investigate,
:Mozilla Labs, Mozilla Labs
: 29th May 2009		 View Podcast: Mozilla Labs,
:Yoosk, Yoosk...
: 29th May 2009		 View Podcast: Yoosk,
:Richard Pope - Straight Choice, Richard Pope - Straight Choice
: 29th May 2009		 View Podcast: Richard Pope - Straight Choice,
Sean O'Halpin:Ruby FFI, Ruby FFI
Sean O'Halpin : 18th May 2009		 View Podcast: Ruby FFI,
OTHER RIA, AJAX & WEB EVENTS
Yahoo! Developer Network:Placemaker, Yahoo! Developer Network
FREE EVENT: Placemaker
London, Tuesday, July 7th
London Ruby User Group:LRUG July, London Ruby User Group
FREE EVENT: LRUG July
London, Wednesday, July 8th
:Ajax Primer: Developing with JavaScript & DOM, JavaScript, JSON & DOM
1 DAY COURSE.
Stockholm, Monday, July 13th
Mark Birbeck The possibilities of RDFa and the Semantic Web, The possibilities of RDFa and the Semantic Web
FREE EVENT: In The Brain of Mark Birbeck
London, Monday, July 13th
Peter Lubbers:Comet Evolved: HTML 5 Web Sockets & Server-Sent Events, Comet Evolved: HTML 5 Web Sockets
3 DAY COURSE. Featuring Peter Lubbers
Oslo, Wednesday, July 22nd
Rails Underground 2009, Rails Underground 2009
CONFERENCE (2 DAYS)
London , Friday, July 24th BOOK NOW!
Peter Elst:Introduction to Adobe Flex, Adobe Flex Intro
1 DAY COURSE. Featuring Peter Elst
London, Monday, August 3rd
Sébastien Gruhier:Ajax Primer: Developing with JavaScript & DOM, JavaScript, JSON & DOM
1 DAY COURSE. Featuring Sébastien Gruhier
London, Monday, August 3rd
© Copyright 2003-2008, Skills Matter Ltd
  Web development by You In Control
About Us  Jobs  Find Us  Meeting & Training Rooms  Newsletter  Community  Community-FR  Apress  1st Teach  Jobs: Telesales  Jobs: Student Podcaster