By producing a popular RIA widget you can distribute your code to millions of users practically overnight. Most widgets are designed to gather data from the web and then present that data to the user. In order to enable this functionality, Google Gadgets for example support a rich programming model based on based on JavaScript and the Gadgets' API. Unfortunately, rich platforms tend to lead to programming errors and security issues. The users of a poorly written RIA widget can have their online accounts breached, web site passwords compromised, local computer data stolen, and even lose control of their computer. This presentation, via code snippets, flow diagrams, and other means, discusses how to write an RIA widget that avoids these pitfalls.
Speaker Bio: Neil Smithline's main focus has been in optimizing the software life cycle from a product's initial concept through its retirement. This has included tools that affect development, programming techniques, software patterns, development processes, developer training, internal and external. For the past nine years he has directed these efforts almost exclusively to application security. He was the BEA Security Architect for over eight years. In this position Smithline co-designed the security framework for WebLogic Server that is now incorporated into most BEA products and becoming part of many Oracle products. During his tenure at BEA, he had the opportunity to interact with hundreds of customers; helping them develop their security architecture, processes, and strategies. He is currently providing security architecture consulting at OneStopAppSecurity.com.
About RIA News Desk Ever since Google popularized a smarter, more responsive and interactive Web experience by using AJAX (Asynchronous JavaScript + XML) for its Google Maps & Gmail applications, SYS-CON's RIA News Desk has been covering every aspect of Rich Internet Applications and those creating and deploying them. If you have breaking RIA news, please send it to RIA@sys-con.com to share your product and company news coverage with AJAXWorld readers.
Adobe put out this press release - well, kinda, it was released at 6am Saturday morning and the company didn't bother to tell its staff about it, least of all its sales people. Anyway, it's about how Acrobat.com, Adobe's contribution to the flock of Office-challenging web apps, h...
The .append() method is perhaps the most misused of all jQuery methods. While an extremely useful and easy method to work with, it dramatically affects the performance of your page. When misused, the .append() method can cripple your JavaScript code's performance. When used well,...
Recently I installed the Beta 2 version of "Geneva", or ADFS 2.0. All of my machines are now Windows 7 machines, including just about all of my VHDs and virtual machines. The only time I use Win2k8 R2 is when the product I'm installing specifically requires me to do that. So when...
SYS-CON Events (http://events.sys-con.com) announced today that the "show prospectus" for the 5th International Cloud Computing Conference & Expo (www.CloudComputingExpo.com) is now shipping.
5th International Cloud Expo will take place April 19-21, 2010, at the Jacob Javits C...
In my previous article I talked about the impact of jQuery Selectors on a page that I analyzed. The page took 4.8 seconds in the onLoad event handler. 2 seconds were mainly caused by the selectors as described in the blog. The other 2.8 seconds were caused by a dynamic JavaScript...
Your registrations includes: Golden Pass Delegates will receive full conference access on March 18-20, 2008 including: Lunch and Coffee Breaks, Collectible Bag and Archives of all sessions on DVD. Includes access to all Conference Sessions including the Technical Sessions, Exhibits, Keynotes, Vendor Technology Presentations, and Power Panels.
Sponsorship Opportunities
AJAXWorld offers the undisputed best platform to position your company as a leading vendor in the fast-emerging marketplace for AJAX and Enterprise Web 2.0.
Please call
(201)802-3020
Who Should Attend?
• CTOs & VPs of Engineering
• Directors of Technology
• Sr. User Interface Architects
• Front-End Engineers
• VCs & Industry Analysts
• Directors of Business Development
• Software Engineers
• Senior Architects
• Application Programmers & Software Developers
• Project Managers
• Web Programmers & Designers
• Companies & Organizations that need to stay in front of the latest Web technology
AJAXWorld Security Bootcamp
On March 18, 2008, AJAXWorld University's "AJAX Security Bootcamp" will be an intensive, one-day hands-on training program that will teach Web developers and designers how to build high-quality AJAX applications from beginning to end.
Held the day before the AJAXWorld Conference & Expo begins, the Bootcamp is intended to be the premier AJAX Security instructional program presently available anywhere.
View the full one-day schedule
AJAXWorld Magazine is the pre-eminent independent vendor-neutral resource for the fastest growing new segment of the software business: entirely Web-based applications and experiences.
About Newsfeeds / Video Feeds
.gif)
By producing a popular RIA widget you can distribute your code to millions of users practically overnight. Most widgets are designed to gather data from the web and then present that data to the user. In order to enable this functionality, Google Gadgets for example support a rich programming model based on based on JavaScript and the Gadgets' API. Unfortunately, rich platforms tend to lead to programming errors and security issues. The users of a poorly written RIA widget can have their online accounts breached, web site passwords compromised, local computer data stolen, and even lose control of their computer. This presentation, via code snippets, flow diagrams, and other means, discusses how to write an RIA widget that avoids these pitfalls.
Adobe put out this press release - well, kinda, it was released at 6am Saturday morning and the company didn't bother to tell its staff about it, least of all its sales people. Anyway, it's about how Acrobat.com, Adobe's contribution to the flock of Office-challenging web apps, h...
The .append() method is perhaps the most misused of all jQuery methods. While an extremely useful and easy method to work with, it dramatically affects the performance of your page. When misused, the .append() method can cripple your JavaScript code's performance. When used well,...
Recently I installed the Beta 2 version of "Geneva", or ADFS 2.0. All of my machines are now Windows 7 machines, including just about all of my VHDs and virtual machines. The only time I use Win2k8 R2 is when the product I'm installing specifically requires me to do that. So when...
SYS-CON Events (http://events.sys-con.com) announced today that the "show prospectus" for the 5th International Cloud Computing Conference & Expo (www.CloudComputingExpo.com) is now shipping.
5th International Cloud Expo will take place April 19-21, 2010, at the Jacob Javits C...
In my previous article I talked about the impact of jQuery Selectors on a page that I analyzed. The page took 4.8 seconds in the onLoad event handler. 2 seconds were mainly caused by the selectors as described in the blog. The other 2.8 seconds were caused by a dynamic JavaScript...
