YOUR FEEDBACK
Rapid Module Development for DotNetNuke
MICHEAL SMITH wrote: GO TO THE LINK, U HAVE EVERYTHING U WANT THERE. MICHEAL...
May. 17, 2008 01:09 AM
Did you read today's front page stories & breaking news?


2007 West
GOLD SPONSORS:
Active Endpoints
Your SOA Needs BPEL for Orchestration
BEA
Virtualized SOA: Adaptive Infrastructure for Demanding Applications
Nexaweb
Overcoming Bandwidth Challenges with Nexaweb
TIBCO
What is Service Virtualization?
SILVER SPONSORS:
WSO2
Using Web Services Technologies and FOSS Solutions
Click For 2007 East
Event Webcasts

2008 East
PLATINUM SPONSORS:
Appcelerator
Think Fast: Accelerate AJAX Development with Appcelerator
GOLD SPONSORS:
DreamFace Interactive
The Ultimate Framework for Creating Personalized Web 2.0 Mashups
ICEsoft
AJAX and Social Computing for the Enterprise
Kaazing
Enterprise Comet: Real–Time, Real–Time, or Real–Time Web 2.0?
Nexaweb
Now Playing: Desktop Apps in the Browser!
Sun
jMaki as an AJAX Mashup Framework
POWER PANELS:
The Business Value
of RIAs
What Lies Beyond AJAX?
KEYNOTES:
Douglas Crockford
Can We Fix the Web?
Anthony Franco
2008: The Year of the RIA
Click For 2007 Event Webcasts
SYS-CON.TV
SYS-CON.TV: RIA Shoot-Out! AJAX, Flex, Silverlight, and JavaFX
TOP THREE LINKS YOU MUST CLICK ON


AJAXWorld News Desk
All-New AJAX Security Bootcamp Next Week at AJAXWorld in New York
Billy Hoffman Launches the World's First All-Day Immersive Learning Focused on Mitigating Risks in AJAX Apps

By: RIA News Desk
Feb. 18, 2008 02:00 PM
Digg This!

Being held for the first time on March 18, 2008 at the historic Roosevelt Hotel in New York City, AJAXWorld Security Bootcamp is a compelling, intensive, one-day, hands-on training program that will teach Web developers, Web designers, and other Web professionals how to build secure AJAX applications and demonstrate what the best practices are to mitigate security problems in AJAX apps.

It is led by one of the world's foremost AJAX security experts and popular teachers, Billy Hoffman.

The full program is below.

Click Here to Register Now and Save!

When:  Monday, March 18, 2008: 8:30AM-5:30PM 

Where:  The Roosevelt Hotel on 45th and Madiscon, New York City

Who:  AJAX Security Bootcamp is led by:

Billy Hoffman is a lead security researcher for SPI Dynamics (www.spidynamics.com), which was purchased by Hewlett-Packard on 01 August 2007. At SPI Dynamics, he focuses on automated discovery of Web application vulnerabilities and crawling technologies. He has been a guest speaker at Black Hat Federal, Toorcon, Shmoocon, O'Reilly's Emerging Technology Conference, The 5th Hope, and several other conferences. His work has been featured in Wired, Make magazine, Slashdot, G4TechTV, and in various other journals and Web sites. In addition, Billy is a reviewer of white papers for the Web Application Security Consortium (WASC), and is a creator of Stripe Snoop, a suite of research tools that captures, modifies, validates, generates, analyzes, and shares data from magstripes. He also spends his time contributing to OSS projects and writes articles under the handle Acidus.


Billy was a featured speaker at AJAXWorld Conference & Expo 2007 West.

Join Billy and your fellow Bootcamp delegates at the AJAXWorld Security Bootcamp on March 18. We'll see you in New York City!

Click Here to Register Now and Save!

AJAX Security Bootcamp Outline

8:30-8:45am Introductions and Participant Goals
8:45-9:30am

Live AJAX hacking demo

Step by step walk through of hacking an AJAX travel site

9:30-10:30am

Web Security

Overview of traditional web security

Resource enumeration attacks

Injection attacks

Information Disclosure

10:30-10:45am Break
10:45am-11:45am

AJAX Attack surface

Scoping the application

Input validation

Rich input validation

11:45am-12:30pm

Transparency in AJAX Applications

Manipulating variables

Control flow tampering

Control logic Denial of Service

Reverse engineering JavaScript

Trapping on-demand AJAX

12:30-1:30pm Lunch
1:30-2:30pm

Advanced AJAX Hacking

AJAX hijacking

Presentation layer hacking

Client-side storage

2:30-3:30pm

Complex AJAX Application Hacking

Web mashups

Gadgets and Widgets

Offline AJAX application

3:30-4:15pm

Audience Hacking Lab

Instructor supervised hacking of AJAX application

4:15-5:15pm

Secure AJAX Development and Testing

Secure coding practicess

Framework security features

Testing AJAX applications

Preserving trust

5:15-5:30pm Q&A

Click Here to Register Now and Save!

Published Feb. 18, 2008 — Reads 40,330
Copyright © 2008 SYS-CON Media. All Rights Reserved.
About RIA News Desk
Ever since Google popularized a smarter, more responsive and interactive Web experience by using AJAX (Asynchronous JavaScript + XML) for its Google Maps & Gmail applications, SYS-CON's RIA News Desk has been covering every aspect of Rich Internet Applications and those creating and deploying them. If you have breaking RIA news, please send it to RIA@sys-con.com to share your product and company news coverage with AJAXWorld readers.

LATEST JAVA STORIES & POSTS
JavaOne 2008: A Developer's Perspective
By Andres Almiray
This is my third JavaOne. Many topics were discussed, friendships were made, new partnerships were started. I must say things have changed a lot and stayed the same yet again, here are my thoughts in no particular order, bear in mind that they do not represent the opinion of my c
3rd International Virtualization Conference & Expo: Themes & Topics
By Jeremy Geelan
From Application Virtualization to Xen, a round-up of the virtualization themes & topics being discussed in NYC June 23-24, 2008 by the world-class speaker faculty at the 3rd International Virtualization Conference & Expo being held by SYS-CON Events in The Roosevelt Hotel, in mi
A Lightweight Approach to SOA and BPM in Java Using jBPM
By SOA World Magazine News Desk
SOA is mostly associated with technologies such as BPEL, SCA and Web Services. But does SOA really imply these technologies? In this session we will show how you can use the service oriented approach while staying inside the Java world. jBPM is a powerful lightweight framework th
Case Study: Java and the Mac
By Bob Cusick
This is the story of a Mac application developer (okay - it's about two of them) who set out on a quest to find an application development tool based on Java so his boss would let him develop on the Mac platform, which he loved. There was only one catch - he had to find a tool th
eApps Hosting Now Offers the GlassFish Java Application Server in VPS Hosting Plans
By Java News Desk
eApps Hosting announced that the GlassFish Open Source Application Server for Java EE 5, from the GlassFish community project, is now available as a click installable application service in low cost Virtual Private Server (VPS) hosting plans. The eApps Hosting service has support
The 4 Core Principles of Agile Programming
By Joe Winchester
One of the things I really enjoy at the moment is the recognition and adoption of agile programming as a fully fledged powerful way to deliver quality software projects. As its figurehead is a group of very talented individuals who have created the agile manifesto (http://agilema
SUBSCRIBE TO THE WORLD'S MOST POWERFUL NEWSLETTERS
SUBSCRIBE TO OUR RSS FEEDS & GET YOUR SYS-CON NEWS LIVE!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021
SYS-CON FEATURED WHITEPAPERS

MOST READ THIS WEEK
Dvorak Talks About "AMD vs Intel" at JavaOne Live on SYS-CON.TV
By SYS-CON TV
Three RIA Tools Examined: JSF, Flex, and JavaFX
By Max Katz
Java Annotations + Compiler API + Annotation Processing = Remarkable Results
By Dmitry Fazunenko
Sara Jessica Parker Should Upgrade To Leopard
By Yakov Fain
Sun Certifying Ubuntu
By Maureen O'Gara
Ubuntu Here We Come! - Java Finally To Become 100% Open Source
By Java News Desk
DataServices World: Data Services Layer and Its Role In SOA
By SOA World Magazine News Desk
Data Services World : Mark Hapner's WADL, URIs as Database Types, Tricks of the Architect's Trade Session
By SOA World Magazine News Desk
DataServices World: The Importance of Middleware and Data Services
By SOA World Magazine News Desk
CodeGear Enhances JBuilder IDE
By Java News Desk
Java Updater: Sun and Google Are as Bad as Apple
By Bob Plankers
SpringSource CEO: "The Future of Enterprise Java is Clear and Bright"
By Java News Desk
ADS BY GOOGLE
BREAKING JAVA NEWS
Five Sun Microsystems Women Honored with Prestigious Awards
Sun Microsystems, Inc. (NASDAQ:JAVA) today announced that five Sun women have been awar
May. 16, 2008 04:00 PM