Difference between revisions of "Category:OWASP AJAX Security Project"

From OWASP
Jump to: navigation, search
(Introduction)
(Introduction)
Line 3: Line 3:
 
The OWASP AJAX Security project is being lead by Rohini Sulatycki.
 
The OWASP AJAX Security project is being lead by Rohini Sulatycki.
  
Here is a high level project roadmap:
+
==Project Roadmap==
  
 
1. Identify and document security issues encountered by AJAX applications.<br>
 
1. Identify and document security issues encountered by AJAX applications.<br>

Revision as of 11:16, 22 February 2008

OWASP Ajax Security Project Table of Contents

Contents

Introduction

The OWASP AJAX Security project is being lead by Rohini Sulatycki.

Project Roadmap

1. Identify and document security issues encountered by AJAX applications.
2. Review AJAX frameworks and identify security issues handled by these frameworks
3. Document ways to secure AJAX applications
4. Provide AJAX related literature review (books, articles, ...)

Volunteers Needed

We are actively seeking contributors to add new sections . If you are interested in volunteering for the project, or have a comment, question, or suggestion, please drop me a line mailto:rohini_sulatycki@yahoo.com
We are currently working on the Ajax Literature Review so if you have any good books/arcticles/presentations that you think should be included let us know. Also if you are interested in working on new sub-projects such as creating a guide on Ajax frameworks/tools or have ideas for a project then email us.

Update: We have a new volunteer Vishal Garg. Many thanks to Vishal!

Current Project Status

We are currently working on reviewing Ajax frameworks/tools. The intent of the review is to provide an overview of the framework, the security risks and how the frameworks can be secured.

The framework we are currently reviewing is the Google Web Toolkit[[1]]. If you have experience using GWT and/or are interested in participating in this review please contact us either though the mailing list or emailing Rohini

Updates

Jeff Williams 2/18/2008 article "Reduce your exposure to AJAX threats" can be viewed here[2]

The SPI Dynamics presentation from BlackHat 2007 can be viewed here [3]

Mailing List

Click here to subscribe to the OWASP Ajax Security Project mailing list.

Subcategories

This category has only the following subcategory.

O

Media in category "OWASP AJAX Security Project"

This category contains only the following file.