SharePoint Apps a word of caution
Posted
by Sahil Malik
on Win Smarts
See other posts from Win Smarts
or by Sahil Malik
Published on Sat, 11 Aug 2012 12:15:03 GMT
Indexed on
2012/08/27
21:51 UTC
Read the original article
Hit count: 244
sharepoint
SharePoint 2010 Training: more information |
Lucky for SharePoint, it is the first foray into this brave world where the browser is masquerading as an operating system. For the very first time, with SharePoint 2013, we will have apps from different vendors, talking to different domains live in the browser. Sound fun eh? Well, all is hunky dory until you consider that browsers don’t have concepts such as process isolation, encryption, obfuscation etc.. Stuff that we are so used to in operating systems that we don’t even think about it. Browsers have JavaScript, and broken HTML5 – it is not secure! In fact, in the current technology spectrum you cannot achieve anything other than laughable security at message level without involving a plugin or some sort of thick code like Java. The only security worth it’s salt in pure html/javascript scenarios, still, is transport security – and that’s it.
© Win Smarts or respective owner