FYI, I just found an article on Ajax security out on Security focus. The article is here: The article touches on several key issues regarding Ajax, including the fact that scripting runs client-side and such. It also discusses how Ajax complicates app testing, which I think is worthwhile to consider carefully. Cheers, Ken van Wyk KRvW Associates, LLC |
PGP.sig
Description: This is a digitally signed message part
_______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php