Welcome!

ColdFusion Authors: John Ryan, Fuat Kircaali, Yeshim Deniz, Anatole Tartakovsky, Steve Lesem

Related Topics: AJAX & REA

AJAX & REA: Article

Can We Fix the Web? Yahoo!'s Douglas Crockford Says "Yes!" at AJAXWorld

Opening Keynote - 5th International AJAXWorld Conference & Expo in New York City
By RIA News Desk
Article Rating:
March 21, 2008 05:30 PM EDT
Reads:
 4,807
"The web was not intended to be an application platform," said Douglas Crockford today as he delivered the Opening Keynote at the 5th International AJAXWorld Conference & Expo, "and the biggest problems in the browser is security."

For over ten years attacks have been possible through the loopholes offered by the browser. A text that is benign in one content might be dangerous in another, third-party scripts can be embedded into URLs.

 Web developers are blamed for this "But it's not their fault it's the system," says Crockford. What went wrong? JavaScript's Global Object is the root cause of Cross-Site Scripting (XSS) attacks, Crockford explains.

The Document Object Model (DOM) is the next problem. And the misuse of cookies as tokens of authority is a third.

"If the Web's been screwed up right from the beginning, why should we be worried about it now?" Crockford asks rhetorically.

One reasons is mashups, which Crockford calls "the most interesting innovation in software development for 20 years."

He then proposed a 3-prong strategy to fix the Web.

1. safe JavaScript subsets

2. small browser improvements

3. massive browser improvements

We need to replace JavaScript, Crockford insists.

Published March 21, 2008 – Reads 4,807
Copyright © 2008 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

About RIA News Desk

Ever since Google popularized a smarter, more responsive and interactive Web experience by using AJAX (Asynchronous JavaScript + XML) for its Google Maps & Gmail applications, SYS-CON's RIA News Desk has been covering every aspect of Rich Internet Applications and those creating and deploying them. If you have breaking RIA news, please send it to RIA@sys-con.com to share your product and company news coverage with AJAXWorld readers.

Comments (1) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

Most Recent Comments
Naysayer 03/19/08 07:27:59 AM EDT

The Web survived 10 years...maybe we should just leve it alone?