Documentos de Académico
Documentos de Profesional
Documentos de Cultura
1. Introduction 2. Background
The most striking technology application in this In the last few years, the use of AJAX as the major
century is the impact of web on the human life. The scripting language is accelerating due to several
current period has witnessed the increased use of benefits it offers. These includes inclusion of
web to a greater extent and the Web 2.0 has made dynamic forms for in built error checking, area
the cyberspace as the global information space. measurement in pages, dynamic changes in
Web 2.0 is a collection of technologies and services background, URL access history, availability of data
that allow increased user-creator interaction, such as framed and non-framed while users request,
content syndication, advancements in web-based and many others.
user interfaces, which ultimately lead to the AJAX is evolved by combing many technologies
creation of an entirely new application platform. where each contributing component offers the
According to Pete Lindstrom, Director of significant milestone thus making web applications
Security Strategies with the Hurwitz Group, Web to a higher level. The web browsers such Explorer or
applications are the most vulnerable elements of an Firebox utilize the techniques of AJAX to improve
organization’s IT infrastructure today. An the performance and increase applications. Thus, the
increasing number of organizations (both for-profit JavaScript deployment enables the browsers and
and not-for-profit) depend on Internet-based consequently the end-users with the bundle of
applications that leverage the power of AJAX. As technological advantages.
this group of technologies becomes more complex The AJAX technologies particularly the
to allow the depth and functionality discussed, and, JavaScript is vulnerable and ignoring such
if organizations do not secure their web vulnerabilities raises security concerns among
applications, then security risks will only increase developers, website owners and the end-users. The
[1]. The most striking features of web 2.0 are its proposed solution suggests auditing AJAX and
ability in harnessing collective intelligence and JavaScript based applications with a web
bringing rich users participation. The web 2.0 has vulnerability scanner that not only parses the HTML
rich applications with features such as user code of a webpage to identify embedded JavaScript,
interaction, knowledge transfer and sharing and end but also executes the code. Automating the process is
user as well as source collaboration. The AJAX also an important key when considering the
technology is used in many synchronous increasing complexity of such web applications [2].
environments ranging from learning to many other
purposes and their potential as well as implications
are addressed in many studies [18-20]. 3. The Web 2.0 Architecture layout
The basic strength of the present web services The peddle of the Web 2.0 concept is its ability to
environment is the Rich Internet Application as make the web pages more dynamic and its
because of the deployment of JAVA script and technological strength in bringing the ‘database’
DHTML for gaining interactivity in web pages. concept. The dynamism of web 2.0 is not just
The fuse of many interrelated technologies has because of user interaction but on the dynamic links
made the AJAX, (the Asynchronous JavaScript) to and the degree of structure and organization. What is
provide the avenues for increasing user dynamic about the web 2.0 is not just the pages, but
participation. As the AJAX is the basic component the links. A link to a weblog is expected to point to a
perennially changing page, with "permalinks" for any
individual entry, and notification for each change [4].
Browsers
C Inter-
a net
c Web
h data
e
AJAX
Library
Web Server
Script
tag
JAVA
Script
AJAX Query Target URL
Hijacker
GET
Session
Cookie