For the past eight(8) years Schalk Neethling has been working as a freelance developer under the pseudo of Volume4 and is now the president of Overt Strategy Consulting. During this period he has completed over 300 projects ranging from full web application development to complete branding. As president and lead developer of Overt Strategy Consulting, Schalk Neethling and his team has released a 100% Java standards based content management system called AlliedBridge and business document exchange and review system, called Doc-Central. Schalk Neethling is also actively involved on a daily basis in the open source, web standards and accessibility areas and is a current active member of the Web Standards Group. Schalk is also the co-founder and president of the non-profit The South Web Standards and Accessibility Group, which aims to actively educate and raise awareness of web standards and accessibility to both the developer society as well as business large and small. Schalk also has a long relationship with DZone and is currently zone leader for both the web builder, css.dzone.com, as well as the .NET zone, dotnet.dzone.com, and you can find a lot of his writing there as well as on his blog located at schalkneethling.alliedbridge.com. Schalk is constantly expanding on his knowledge of various aspects of technology and loves to stay in touch with the latest happenings. For Schalk web development and the internet is not just a job, it is a love, a passion and a life style. Schalk has posted 173 posts at DZone. View Full User Profile

Advanced Web Application Security

07.27.2008
| 7250 views |
  • submit to reddit

The security landscape has changed dramatically in the past 12 months. Unless you are aware of CSRF, Javascript Highjacking and the many ways to fool an XSS filter, it’s likely that your web application will not be secure. Attackers used to concentrate on ActiveX, but now Javascript, CSS and even simple HTML elements are used against websites. This session, presented at the Grails eXchange 2007, will outline the challenges facing the inhabitants of this strange word called Web 2.0 and the options for protection, from the point of view of both site owners and web users.

Joe Walker, works on advanced development techniques such as Ajax and is the creator of DWR - Direct Web Remoting - the most popular Ajax toolkit for Java.

References
Published at DZone with permission of its author, Schalk Neethling. (source)

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)

Comments

Steven Baker replied on Sun, 2008/07/27 - 9:06pm

how is this even advanced... i want my 54 minutes back

rob desbois replied on Mon, 2008/07/28 - 5:38am

PDF of presentation available here: http://developers.sun.com/learning/javaoneonline/j1sessn.jsp?sessn=TS-5302&yr=2008&track=nextweb

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.