Roumen posted a blog entry about Sun's commitment to create "Consumer JRE". This is exactly what JavaFX needs in order to blow Flash away.
In the morning I attended Ajax Security session. The session didn't bring up anything new (un)fortunately, but it was a good recap of security pitfalls and best practices for Ajax development. The main message of the session was that Ajax makes securing web applications more complicated because of exposing more API and revealing many implementation details to the cruel world. The most important counter measures are:
- don't trust the client
- validate input
- encode output
- don't send sensitive (passwords) data in raw form over http
- remove comments from html and java script
Btw, I've been using Netbeans 6 M9 as my main development environment for almost two weeks now, while working on numerious Java and Rails projects. The stability of this build is fantastic. I don't recall seeing any major or even minor issues.
No comments:
Post a Comment