Secure AJAX Mashups

Brent Ashley explains the problem and possible solutions for secure AJAX mashups (via Ajaxian). It has come a right time, when developers are reporting AJAX vulnerabilities.

The inherent conflict is because we are using today’s tools in an unintended way, which springs up surprises, especially when we least expect it. Howmuchever we try to tweak, we end up having to compromise on some aspect. I like the way in which Brent brings in security and scalability. In fact Shelley Powers has a good quote on her blog regarding this

An application can be mashup-friendly or it can be secure, but it cannot be both.

Brent lists a lot of resources in this excellent article. All the current efforts have been isolated, by one organization or individual. In my opinion we need a more institutionalized approach. Rather than trying to workaround the current tools and techniques it will be beneficial if we design new ones or redesign the old ones with the purpose of supporting asynchronous data retrieval from multiple sources. Of course, some might feel this will be an overhaul, but it is worth it if mashups provide us value.

Discussion [Participate or Link]

  1. brentashley » Blog Archive » Mashing Up, Jamming Together said:

    […] ifacethoughts […]

Say your thought!

If you want to use HTML you can use these tags: <a>, <em>, <strong>, <abbr>, <code>, <blockquote>. Closing the tags will be appreciated as this site uses valid XHTML.



Abhijit Nadgouda
iface Consulting
+91 9819820312
My bookmarks


This is the weblog of Abhijit Nadgouda where he writes down his thoughts on software development and related topics. You are invited to subscribe to the feed to stay updated or check out more subscription options. Or you can choose to browse by one of the topics.