Ajax Security in Groupware

Author

Sonntag, Michael

Author_Institution

Inst. for Inf. Process. & Microprocessor Technol., Johannes Kepler Univ., Linz

fYear

2006

fDate

Aug. 29 2006-Sept. 1 2006

Firstpage

472

Lastpage

479

Abstract

Ajax is a new model for Web applications to provide more responsive and faster user interfaces resembling more closely that of applications. Typical usage areas are user input validation without page submission, integrating small elements from several servers on a single page, and simulating push-services. Especially the latter are promising for enhancing groupware applications and for realizing them directly in browsers without plug-ins or additional software. The Ajax programming model introduces new security issues, which could be especially dangerous as they were not fully accounted for in previous threat models or considered as of less importance. This paper investigates the security implications of Ajax and discusses possible solutions with a special focus on the context of groupware. It explains security issues which are inherent to the Ajax programming model or are exacerbated through it, and which especially affect cooperative application

Keywords

Java; XML; groupware; security of data; Ajax programming model; Ajax security; Asynchronous JavaScript and XML; Web application; groupware; user interface; Application software; Collaborative software; Collaborative work; Information processing; Information security; Java; Microprocessors; User interfaces; Web pages; XML;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Engineering and Advanced Applications, 2006. SEAA '06. 32nd EUROMICRO Conference on

Conference_Location

Cavtat, Dubrovnik

ISSN

1089-6503

Print_ISBN

0-7695-2594-6

Type

conf

DOI

10.1109/EUROMICRO.2006.18

Filename

1690173