0 looks strangely similar to Web 1.0. However, underneath the Web
2.0 platform, consumers are seeing a whole collection of technologies and solutions to
enrich a user??™s online experience.
The new popularity came about due to organizations improving existing items that
have been around awhile, but with a better offering to end users. Web 2.0 technologies
are a big part of that, allowing applications to do a lot more than just provide static
HTML to end users.
With any new and/or emerging technology, security considerations tend to pop-up
right at the end or not at all. As vendors are rushing to get features out the door first or
to stay competitive with the industry, security requirements, features, and protections
often get left off the Software Development Life Cycle (SDLC). Hence, consumers are left
with amazing technologies that have security holes all over them. This is not only true in
Web 2.0, but other emerging technologies such as Voice Over IP (VoIP) or iSCSI storage.
This book covers Web 2.0 security issues from an attack and penetration perspective.
Attacks on Web 2.0 applications, protocols, and implementations are discussed, as well
as the mitigations to defend against these issues.
Pages:
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43