Category:OWASP AIR Security Project

Overview
OWASP AIR Security Project is an open project for sharing a knowledge base in order to raise awareness around the subject of AIR application security.

Goals
The OWASP AIR Security Project aims is to produce guidelines, references and tools around AIR Application Security.

Articles
[1] Introduction to the AIR Security Model An Adobe blog introducing the AIR security model at a high level.

[2] Digitally Signing Adobe AIR Applications An Adobe Developer Center article on how to sign and test AIR applications.

[3] Managing Adobe AIR updates with ColdFusion 8 An Adobe Developer Center article on how to push out updates to AIR applications.

[4] Remote Plugins and Modules in AIR An Adobe blog entry on how to load remote modules in AIR applications.

[5] Code Signing in Adobe AIR An in depth, Dr. Dobb's Journal article on code signing in Adobe AIR.

[6] Creating and validating XML signatures An Adobe Developer Center article on leveraging the XMLSignatureValidator API in Adobe AIR.

White Papers
[1] Adobe AIR 1.0 Security pdf, Adobe.

Presentations
[1] Maintaining Security With Adobe AIR [ppt] [video] The session on AIR security presented at MAX 2008 by Ethan Malasky and Peleus Uhley.

[2] Designing Secure AIR Applications [video] A video recording of Adobe's Ethan Malasky presenting on AIR Security.

Useful Frameworks
Adobe AIR Update Framework A beta framework for including good update capabilities within your application.

Related Projects
OWASP Flash Security Project