« JDeveloper 11 – ADF Faces RC: Stop client to server event propagation | Main | ADF Faces: Direct file download through managed bean »
Open World 2007 Session: Building Secure Ajax Web Applications with ADF Faces RC and ADF Security
By frank.nimphius | August 17, 2007
Last week I received the notification that Oracle Open World 2007, which is held from November 11-15 in San Francisco, accepted my paper “Mind the Gap: Building Secure Ajax Web Applications with ADF Faces RC and ADF Security”. Last year, in a tag team with Ric Smith, I presented about general application security topics in ADF from a developer perspective. This year I though to focus on what everybody seems to be interested in: Ajax.
For the JDJ magazine I authored a not yet published article with the title “Mind the Gap: Application Security in Ajax”. For the OOW session I extended this article with ADF Security and ADF Faces RC content to showcase a solution to my claim that application security in Ajax wont happen on the client and that it requires a server side security model that then surfaces its enforced policies in the UI.
The session covers a general overview of security principles that exist for web and Ajax applications alike to then discuss how Ajax changes the attack surface. It concludes with what can be done and what needs to be done to avoid ‘killer applications’ in Ajax. ADF Security is covered and explained for ADF Faces Rich Client applications in JDeveloper 11. However, I am sure that you get a lot out of this talk even if you are not planning to use JDeveloper 11 too soon. I have a couple of month left to prepare and will make sure you get good information for your time. I also try to convince Ric Smith to again join this session as a presenter to make it more enjoyable for you to listen (not that I feel I am a boring presenter)
As last year, Oracle Open World organizes a separate developer track that is in parallel to Open World. To get to the development tracks you will have to walk over from the Moscone center to the Hilton hotel, which is a nice exercise and also a great opportunity to get some fresh air between sessions. As a nice extra – there is a Starbucks on the way so you also get the chance to grab your favorite coffee flavor to-go.
So hope to see you at Open World! Make sure that you register early for this security session because I expect many more people attending than last year but don’t know if we will get a bigger room. So first come first serve!
Frank
Topics: General News | No Comments »
Comments are closed.
