Securing Ajax Applications

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot

This book is about general web security and is not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot
Securing Ajax Applications is a fairly specific title and in most programmers' minds will bring thoughts of how to write secure Javascript. If this is indeed what you are looking for then this book is going to be a disappointment. Basically it is a  book about general web security and not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

 

Even if you treat the book as one on the general topic of web security there can't be many programmers who aren't aware of the standard attack methods. It starts out with a history of the web and HTTP and this part reads like a third hand account. If you were there then you will know the history, much of which isn't relevant to security anyway. Form here we move on to general security and the STRIDE model - spooffing, tampering, redirection, information disclosure, denial of service and elevation of privileges. We have a discussion of SQL injection and buffer overflow attacks and so on, but there is very little code to illustrate the ideas and Ajax seems to be hardly mentioned. I'm not at all sure that the author is a programmer and this is what you really need to deal with the complexities of Ajax security. What we do have is a tutorial on installing Ubuntu and making it secure and just about anything you can think of.

Overall this book is a fairly shallow look at web security that would suit a beginner. As such it has some value. As a book on Ajax security it fails without even trying as there is hardly anything about Ajax in it.

Banner


Objective-C Phrasebook

Author: David Chisnall
Publisher: Addison-Wesley, 2011
Pages: 352
ISBN: 978-0321743626
Aimed at: Objective-C programmers
Rating: 2
Pros: Wide and deep coverage will appeal to language enthusiasts and to users of GNUStep
Cons: Confusing for Mac/iOS developers
Reviewed by: Mike James

This small format book pr [ ... ]



Leadership, Teamwork, and Trust

Author: Watts S. Humphrey & James W. Over
Publisher: Addison-Wesley, 2011
Pages: 368
ISBN: 978-0321624505
Aimed at: Team leaders, managers
Rating: 4
Pros: A handbook for TSP
Cons: Misleading title
Reviewed by: Alex Armstrong

Although not clearly spelled out in the title, this is a book about a specifi [ ... ]


More Reviews

 

Last Updated ( Sunday, 02 May 2010 )
 
 

   
RSS feed of book reviews only
I Programmer Book Reviews
RSS feed of all content
I Programmer Book Reviews
Copyright © 2014 i-programmer.info. All Rights Reserved.
Joomla! is Free Software released under the GNU/GPL License.