Single Page Web Applications Security

Bogdan Beda

Abstract


With the constant spread of internet access, the world of software is constantly transforming product shapes into services delivered via web browsers. Modern next generation web applications change the way browsers and users interact with servers. A lot of word scale services have already been delivered by top companies as Single Page Applications. Moving services online poses a big attention towards data protection and web application security. Single Page Application are exposed to server-side web applications security in a new way. Also, having application logic being executed by untrusted client environment requires close attention on client application security. Single Page Applications are vulnerable to the same security threads as server-side web application thus not making them less secure. Defending techniques can be easily adapted to guard against hacker attacks.

Keywords


SPA, JavaScript, HTML, AJAX, XSS, CSRF, Sensitive Data Exposure, Vulnerability, Injection

Full Text:

PDF

References


Paco Hope, Ben Walther, Web Security Testing Cookbook, O’Reilly , 2008;

Michael Mikowski, Josh Powel, Single Page Web Applications: JavaScript end-to-end, Manning, 2013;

Bryan Sullivan, Vincent Liu, Web Application Security, A Beginner’s Guide, McGraw-Hill Osborne, 2012;

Hacking Web Apps, Mike Shema, Syngress, 2012;

The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws, Dafydd Stuttard, Marcus Pinto, John Wiley & Sons, 2011;


Refbacks

  • There are currently no refbacks.


Journal of Mobile, Embedded and Distributed Systems (JMEDS) ISSN: 2067 – 4074 (online)