Single Page Web Applications Security


  • Bogdan Beda IT&C Security Master Department of Economic Informatics and Cybernetics The Bucharest University of Economic Studies


SPA, JavaScript, HTML, AJAX, XSS, CSRF, Sensitive Data Exposure, Vulnerability, Injection


With the constant spread of internet access, the world of software is constantly transforming product shapes into services delivered via web browsers. Modern next generation web applications change the way browsers and users interact with servers. A lot of word scale services have already been delivered by top companies as Single Page Applications. Moving services online poses a big attention towards data protection and web application security. Single Page Application are exposed to server-side web applications security in a new way. Also, having application logic being executed by untrusted client environment requires close attention on client application security. Single Page Applications are vulnerable to the same security threads as server-side web application thus not making them less secure. Defending techniques can be easily adapted to guard against hacker attacks.


Paco Hope, Ben Walther, Web Security Testing Cookbook, O’Reilly , 2008;

Michael Mikowski, Josh Powel, Single Page Web Applications: JavaScript end-to-end, Manning, 2013;

Bryan Sullivan, Vincent Liu, Web Application Security, A Beginner’s Guide, McGraw-Hill Osborne, 2012;

Hacking Web Apps, Mike Shema, Syngress, 2012;

The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws, Dafydd Stuttard, Marcus Pinto, John Wiley & Sons, 2011;




How to Cite

Beda, B. (2015). Single Page Web Applications Security. Journal of Mobile, Embedded and Distributed Systems, 7(2), 54-59. Retrieved from