This book explores Ajax and web application security with an eye for dangerous gaps and offers ways that you can plug them before they become problems. By making security part of the initial process, you will learn how to build secure Ajax applications and discover how to respond quickly when attacks occur. Securing Ajax Applications succinctly explains that the back-and-so on the same communication that makes Ajax so responsive also gives invaders new opportunities to collect data, make creative new requests of your server, and interfere with communication between you and your customers. This book presents basic security techniques and examines vulnerabilities with JavaScript, XML, JSON, Flash, and other technologies - vital information that will ultimately save time and money. Topics include: Overview of developing a web platform, including APIs, feeds, web services and asynchronous message basics of Web security, including common vulnerabilities, common treatment, state management and session management How to secure web technologies, such as Ajax, JavaScript, Java applets, Active X controls , plug-ins, Flash and Flex How to protect your server, including front-line defense, dealing with application servers, PHP and web scripting vulnerability between standards like HTTP, XML, JSON, RSS, ATOM, REST, and xdos How to secure web services, build secure APIs, and make open mashups secure Securing Ajax Applications takes the challenges created by the new generation of web development, and demonstrates why web security is not just for administrators and back-end programmers anymore.