Securing Ajax Applications
Securing Ajax Applications

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot

This book is about general web security and is not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot
Securing Ajax Applications is a fairly specific title and in most programmers' minds will bring thoughts of how to write secure Javascript. If this is indeed what you are looking for then this book is going to be a disappointment. Basically it is a  book about general web security and not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

 

Even if you treat the book as one on the general topic of web security there can't be many programmers who aren't aware of the standard attack methods. It starts out with a history of the web and HTTP and this part reads like a third hand account. If you were there then you will know the history, much of which isn't relevant to security anyway. Form here we move on to general security and the STRIDE model - spooffing, tampering, redirection, information disclosure, denial of service and elevation of privileges. We have a discussion of SQL injection and buffer overflow attacks and so on, but there is very little code to illustrate the ideas and Ajax seems to be hardly mentioned. I'm not at all sure that the author is a programmer and this is what you really need to deal with the complexities of Ajax security. What we do have is a tutorial on installing Ubuntu and making it secure and just about anything you can think of.

Overall this book is a fairly shallow look at web security that would suit a beginner. As such it has some value. As a book on Ajax security it fails without even trying as there is hardly anything about Ajax in it.

Banner


High Performance MySQL 3rd Edition

Authors: Baron Schwartz, Peter Zaitsev & Vadim Tkachenko
Publisher: O'Reilly
Pages: 828
ISBN: 978-1449314286
Aimed at: MySQL DBAs, but useful for developers too
Rating: 5
Pros: Really strong technical tips and discussions
Cons: Some topics could benefit from more detailed discussion
Reviewed by: Kay Ewb [ ... ]



Programming Microsoft ASP.NET MVC, 3rd Ed

Author: Dino Esposito
Publisher: Microsoft Press
Pages: 516
ISBN:978-0735680944
Aimed at: ASP.NET Web Forms programmers
Rating: 4.5
Pros: Pragmatic introduction
Cons: Not suitable for the complete beginner
Reviewed by: Alex Armstrong

The latest edition of Dino Esposito's book on ASP.NET MVC has b [ ... ]


More Reviews

 

Last Updated ( Sunday, 02 May 2010 )
 
 

   
RSS feed of book reviews only
I Programmer Book Reviews
RSS feed of all content
I Programmer Book Reviews
Copyright © 2015 i-programmer.info. All Rights Reserved.
Joomla! is Free Software released under the GNU/GPL License.