Suche senden
Hochladen
CTO Talk: HTML5, a clear and present danger
âą
0 gefÀllt mir
âą
795 views
DenyAll Security Solutions
Folgen
Technologie
Melden
Teilen
Melden
Teilen
1 von 16
Empfohlen
Foundations of Cyber Security Review Certificate
Foundations of Cyber Security Review Certificate
David Sweigert
Â
SVAGlobal
SVAGlobal
NetSet Software (P) Ltd.
Â
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
CA API Management
Â
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Jaroslav Gergic
Â
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Inc.
Â
Integrating Application Security into a Software Development Process
Integrating Application Security into a Software Development Process
Achim D. Brucker
Â
SAP_UI5_oData_ABAP_Murugesan_Perumal
SAP_UI5_oData_ABAP_Murugesan_Perumal
Murugesh Rajeev Perumal
Â
Scaling Agile with the Lessons of Lean Product Development Flow
Scaling Agile with the Lessons of Lean Product Development Flow
TechWell
Â
Empfohlen
Foundations of Cyber Security Review Certificate
Foundations of Cyber Security Review Certificate
David Sweigert
Â
SVAGlobal
SVAGlobal
NetSet Software (P) Ltd.
Â
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
CA API Management
Â
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Jaroslav Gergic
Â
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Inc.
Â
Integrating Application Security into a Software Development Process
Integrating Application Security into a Software Development Process
Achim D. Brucker
Â
SAP_UI5_oData_ABAP_Murugesan_Perumal
SAP_UI5_oData_ABAP_Murugesan_Perumal
Murugesh Rajeev Perumal
Â
Scaling Agile with the Lessons of Lean Product Development Flow
Scaling Agile with the Lessons of Lean Product Development Flow
TechWell
Â
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
SAP PartnerEdge program for Application Development
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
TigerGraph
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Goudham Thangavelu
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Sunil M
Â
Resume
Resume
dhirendra gohil
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Shantha Kumar N
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Gene Kim
Â
SAS Modernization Webinar
SAS Modernization Webinar
d-Wise Technologies
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Rajendran m
Â
GunjanDixitCV
GunjanDixitCV
Gunjan Saxena Dixit
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Acquia
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Abhishek Kant
Â
Demystifying Cloud Security
Demystifying Cloud Security
Ben Clay, CSP (IoT - Expert)
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Hyperdrive Agile Leadership (powered by Bratton & Company)
Â
Cross browser testing
Cross browser testing
Perfecto Mobile
Â
Integrating Security into DevOps
Integrating Security into DevOps
CloudPassage
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Mike Kavis
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Matt Turner
Â
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Enterprise Knowledge
Â
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
Â
Weitere Àhnliche Inhalte
Ăhnlich wie CTO Talk: HTML5, a clear and present danger
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
SAP PartnerEdge program for Application Development
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
TigerGraph
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Goudham Thangavelu
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Sunil M
Â
Resume
Resume
dhirendra gohil
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Shantha Kumar N
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Gene Kim
Â
SAS Modernization Webinar
SAS Modernization Webinar
d-Wise Technologies
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Rajendran m
Â
GunjanDixitCV
GunjanDixitCV
Gunjan Saxena Dixit
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Acquia
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Abhishek Kant
Â
Demystifying Cloud Security
Demystifying Cloud Security
Ben Clay, CSP (IoT - Expert)
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Hyperdrive Agile Leadership (powered by Bratton & Company)
Â
Cross browser testing
Cross browser testing
Perfecto Mobile
Â
Integrating Security into DevOps
Integrating Security into DevOps
CloudPassage
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Mike Kavis
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Matt Turner
Â
Ăhnlich wie CTO Talk: HTML5, a clear and present danger
(20)
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Â
Resume
Resume
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Â
SAS Modernization Webinar
SAS Modernization Webinar
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Â
GunjanDixitCV
GunjanDixitCV
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Â
Demystifying Cloud Security
Demystifying Cloud Security
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Â
Cross browser testing
Cross browser testing
Â
Integrating Security into DevOps
Integrating Security into DevOps
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Â
KĂŒrzlich hochgeladen
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Enterprise Knowledge
Â
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
Â
đŹ The future of MySQL is Postgres đ
đŹ The future of MySQL is Postgres đ
RTylerCroy
Â
Finology Group â Insurtech Innovation Award 2024
Finology Group â Insurtech Innovation Award 2024
The Digital Insurer
Â
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
Antenna Manufacturer Coco
Â
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Katpro Technologies
Â
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
naman860154
Â
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
HampshireHUG
Â
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
Â
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
hans926745
Â
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
Â
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
apidays
Â
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Malak Abu Hammad
Â
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
Â
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
Â
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
Â
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
The Digital Insurer
Â
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
wesley chun
Â
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
Â
Scaling API-first â The story of a global engineering organization
Scaling API-first â The story of a global engineering organization
Radu Cotescu
Â
KĂŒrzlich hochgeladen
(20)
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Â
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Â
đŹ The future of MySQL is Postgres đ
đŹ The future of MySQL is Postgres đ
Â
Finology Group â Insurtech Innovation Award 2024
Finology Group â Insurtech Innovation Award 2024
Â
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
Â
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Â
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
Â
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
Â
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
Â
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
Â
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Â
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Â
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Â
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Â
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Â
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Â
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Â
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
Â
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Â
Scaling API-first â The story of a global engineering organization
Scaling API-first â The story of a global engineering organization
Â
CTO Talk: HTML5, a clear and present danger
1.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 16/7/2013 Deny All © 2013 1 HTML5: Clear & Present Danger CTO Talk May 29, 2013 This event will start at 9:30am CEST, thanks for your patience
2.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 26/7/2013 Deny All © 2013 2 Hello! Renaud Bidou Chief Technology Officer Stéphane de Saint Albin VP Sales & Marketing
3.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 36/7/2013 Deny All © 2013 3 âą Our goal: share our views on the dangers associated with HTML5 in 60 minutes âą How it works â Youâre muted⊠â ⊠but please ask any questions using the chat tool â Weâll take a few minutes at the end to answer them Logistics
4.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 46/7/2013 Deny All © 2013 4 âą Clear and present danger â Not fully standardized yet â Supported by all browsers â User experience enhancements â New vulnerabilities â Disruptive for existing security tools âą Gartnerâs recommendation â âEnterprises must assess the risks of HTML5 and use appropriate security measures to mitigate risks for sensitive applicationsâ â In âPrepare to Deal with HTML Security Risksâ, 4 Sept 2012, John Girard, John Pescatore HTML5
5.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 56/7/2013 Deny All © 2013 5 Menu 1. HTML5 new capabilities 2. HTML5 tricks 3. Empowering common threats 4. Hackersâdreams come true
6.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 66/7/2013 Deny All © 2013 6Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 6 Whatâs new with HTML5
7.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 76/7/2013 Deny All © 2013 7Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 7 Poll #1
8.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 86/7/2013 Deny All © 2013 8 âą Project led by W3C âą Latest draft: HTML 5.1 â May 2, 2013 â Previous : December 17, 2012 â Previously : 13 drafts starting from January 22, 2008 âą Why HTML5 ? â Make HTML content natively dynamic â Support offline mode â Increase security control and tuning â Improve internals for performance, task parallelization etc. HTML5 short history
9.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 96/7/2013 Deny All © 2013 9 ⹠On-the-fly graphics with the <canvas> tag ⹠Native MP3, Ogg and Wav audio format support with the <audio> tag ⹠Native MP4, WebM and Ogg video format support with the <video> tag ⹠Drag & Drop ! with draggable attribute and ondrop event handler ⹠Embedded geolocation with the new getCurrentPosition() method New HTML content
10.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 106/7/2013 Deny All © 2013 10 âą New input types through <input type> attribute â Email : type="email" â URL: type="url" â Numbers: type="number" type="range" â Date: type="date" type="month" type="week" âą Embedded format validator â Based on type attribute value â Can be enforced through the pattern attribute â Can be disabled⊠donât try to understand⊠Input Validation <form novalidate>
11.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 116/7/2013 Deny All © 2013 11 New forms inputs <input type="email"> <input type="url"> <input pattern="d{4}" placeholder="4 digits PIN"> <input type="number" min="0" max="10" step="2" value="6">
12.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 126/7/2013 Deny All © 2013 12 ⹠Web Workers enable JavaScript background processing ⹠Web Storage improves local storage to extend the cookie concept and natively support session-based data handling ⹠WebApp Cache to enable offline mode of Web/Cloud based applications ⹠Server Sent Events (SSE) enables Server to Client communication through the established connection New HTML internals
13.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 136/7/2013 Deny All © 2013 13Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 13 HTML5 new security tricks
14.
To view full
slides or to listen to the webinar recording, please visit www.denyall.com/recordings_en.html Link is available in the description below.
15.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 156/7/2013 Deny All © 2013 15 Call to Action 1. Download the Forrester report â www.denyall.com/forrester-en/ 2. Evaluate Protect 4.1 FP1 â Now available in customersâ download area â Not a customer yet? Contact us today 3. Evaluate Detect 5.1 â https://edge.denyall.com â ftp://ftp-detect.denyall.com 4. Letâs talk about your needs â sales@denyall.com, +33 1 46 20 96 00
16.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 166/7/2013 Deny All © 2013 16 Thank you! info@denyall.com +33 1 46 20 96 00