Sunday, December 3rd, 2006

Does AJAX cause a larger “Attack Surface”? No.

Category: Articles, Security

What Hat Security digs deep into the mess of “Ajax is insecure” hype with their article on Myth-Busting AJAX (In)security.

They discuss:

  • Does AJAX cause a larger “Attack Surface”? No.
  • Does AJAX make the “Attack Surface” harder to find? Yes and No.
  • Can AJAX cause “Denial of Service”? Not really.
  • Does AJAX rely on client-side security? No.
  • Does AJAX lead to poor security decisions? Sort of.
  • Does AJAX make Cross-Site Scripting (XSS) attacks worse? I hope not.
  • Does AJAX change security best practices? No.

Does this article exhibit common sense? Yes. Does it answer its own questions like Donald Rumsfeld? Yes.

Posted by Dion Almaer at 9:59 am
Comment here

3.6 rating from 17 votes

Comments Here »

Comments feed TrackBack URI

Leave a comment

You must be logged in to post a comment.