TechEd SEA 2007 is around the corner. Yes, this year I will be presenting again. After getting a pretty good evaluation score during last year TechEd in security Hands-on-lab, this year I plan to talk about how to write secure code for AJAX development.
Title: AJAX: Hacker’s Favourate
Synopsis: With the rising of Web 2.0 platforms, new security threats have emerged. AJAX becomes the enabler of Web 2.0 to deliver rich user experience for Internet users. AJAX also changing the way how Web application look and been developed. But most developers are not aware of the security risk that cause by these technologies. In this presentation we will look at various tactics used by hackers such as denial of HTPP requests, cross-site scripting (XSS), exposing application logic and etc. The session will introduce how to implementing secure AJAX development using ASP.Net AJAX Extensions