Enviar pesquisa
Carregar
CTO Talk: HTML5, a clear and present danger
âą
0 gostou
âą
795 visualizaçÔes
DenyAll Security Solutions
Seguir
Tecnologia
Vista de apresentação de diapositivos
Denunciar
Compartilhar
Vista de apresentação de diapositivos
Denunciar
Compartilhar
1 de 16
Recomendados
Foundations of Cyber Security Review Certificate
Foundations of Cyber Security Review Certificate
David Sweigert
Â
SVAGlobal
SVAGlobal
NetSet Software (P) Ltd.
Â
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
CA API Management
Â
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Jaroslav Gergic
Â
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Inc.
Â
Integrating Application Security into a Software Development Process
Integrating Application Security into a Software Development Process
Achim D. Brucker
Â
SAP_UI5_oData_ABAP_Murugesan_Perumal
SAP_UI5_oData_ABAP_Murugesan_Perumal
Murugesh Rajeev Perumal
Â
Scaling Agile with the Lessons of Lean Product Development Flow
Scaling Agile with the Lessons of Lean Product Development Flow
TechWell
Â
Recomendados
Foundations of Cyber Security Review Certificate
Foundations of Cyber Security Review Certificate
David Sweigert
Â
SVAGlobal
SVAGlobal
NetSet Software (P) Ltd.
Â
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
API Roles In Cloud and Mobile Security - Greg Olsen, IT Manager, Integration ...
CA API Management
Â
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Software Engineering in the Age of SaaS and Cloud Computing - SERA 2013 - MFF...
Jaroslav Gergic
Â
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Technology Forum 2013: Our Vision Around Application Driven Networking
Avaya Inc.
Â
Integrating Application Security into a Software Development Process
Integrating Application Security into a Software Development Process
Achim D. Brucker
Â
SAP_UI5_oData_ABAP_Murugesan_Perumal
SAP_UI5_oData_ABAP_Murugesan_Perumal
Murugesh Rajeev Perumal
Â
Scaling Agile with the Lessons of Lean Product Development Flow
Scaling Agile with the Lessons of Lean Product Development Flow
TechWell
Â
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
SAP PartnerEdge program for Application Development
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
TigerGraph
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Goudham Thangavelu
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Sunil M
Â
Resume
Resume
dhirendra gohil
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Shantha Kumar N
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Gene Kim
Â
SAS Modernization Webinar
SAS Modernization Webinar
d-Wise Technologies
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Rajendran m
Â
GunjanDixitCV
GunjanDixitCV
Gunjan Saxena Dixit
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Acquia
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Abhishek Kant
Â
Demystifying Cloud Security
Demystifying Cloud Security
Ben Clay, CSP (IoT - Expert)
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Hyperdrive Agile Leadership (powered by Bratton & Company)
Â
Cross browser testing
Cross browser testing
Perfecto Mobile
Â
Integrating Security into DevOps
Integrating Security into DevOps
CloudPassage
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Mike Kavis
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Matt Turner
Â
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Malak Abu Hammad
Â
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
debabhi2
Â
Mais conteĂșdo relacionado
Semelhante a CTO Talk: HTML5, a clear and present danger
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
SAP PartnerEdge program for Application Development
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
TigerGraph
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Goudham Thangavelu
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Sunil M
Â
Resume
Resume
dhirendra gohil
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Shantha Kumar N
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Gene Kim
Â
SAS Modernization Webinar
SAS Modernization Webinar
d-Wise Technologies
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Rajendran m
Â
GunjanDixitCV
GunjanDixitCV
Gunjan Saxena Dixit
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Acquia
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Abhishek Kant
Â
Demystifying Cloud Security
Demystifying Cloud Security
Ben Clay, CSP (IoT - Expert)
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
SOASTA
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Hyperdrive Agile Leadership (powered by Bratton & Company)
Â
Cross browser testing
Cross browser testing
Perfecto Mobile
Â
Integrating Security into DevOps
Integrating Security into DevOps
CloudPassage
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Mike Kavis
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Matt Turner
Â
Semelhante a CTO Talk: HTML5, a clear and present danger
(20)
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Google Technical Webinar - Building Mashups with Google Apps and SAP, using S...
Â
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Graph Gurus 24: How to Build Innovative Applications with TigerGraph Cloud
Â
Resume_of_Goudham_Thangavel
Resume_of_Goudham_Thangavel
Â
SunilKumarBM_JAVA
SunilKumarBM_JAVA
Â
Resume
Resume
Â
Shanthkumar 6yrs-java-analytics-resume
Shanthkumar 6yrs-java-analytics-resume
Â
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
DOES14 - Scott Prugh - CSG - DevOps and Lean in Legacy Environments
Â
SAS Modernization Webinar
SAS Modernization Webinar
Â
Rajendran M 2+ years of Exp in Dot net
Rajendran M 2+ years of Exp in Dot net
Â
GunjanDixitCV
GunjanDixitCV
Â
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
Â
Drag and Drop Application Development with Progress Rollbase
Drag and Drop Application Development with Progress Rollbase
Â
Demystifying Cloud Security
Demystifying Cloud Security
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
Â
Modern Load Testing: Move Your Load Testing from the Past to the Present
Modern Load Testing: Move Your Load Testing from the Past to the Present
Â
AgileCamp Silicon Valley 2015: An Agile Journey
AgileCamp Silicon Valley 2015: An Agile Journey
Â
Cross browser testing
Cross browser testing
Â
Integrating Security into DevOps
Integrating Security into DevOps
Â
Monitoring in the DevOps Era
Monitoring in the DevOps Era
Â
MarkLogic User Group - Best of MLW and Search + Semantics
MarkLogic User Group - Best of MLW and Search + Semantics
Â
Ăltimo
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Malak Abu Hammad
Â
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
debabhi2
Â
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service đž 8923113531 đ° Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service đž 8923113531 đ° Avail...
gurkirankumar98700
Â
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Katpro Technologies
Â
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Roshan Dwivedi
Â
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
Â
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
naman860154
Â
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
Earley Information Science
Â
Finology Group â Insurtech Innovation Award 2024
Finology Group â Insurtech Innovation Award 2024
The Digital Insurer
Â
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
ThousandEyes
Â
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Sinan KOZAK
Â
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
Â
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
Â
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
Â
đŹ The future of MySQL is Postgres đ
đŹ The future of MySQL is Postgres đ
RTylerCroy
Â
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel AraĂșjo
Â
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Gabriella Davis
Â
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Maria Levchenko
Â
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
wesley chun
Â
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
Â
Ăltimo
(20)
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Â
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
Â
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service đž 8923113531 đ° Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service đž 8923113531 đ° Avail...
Â
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Â
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Â
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Â
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
Â
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
Â
Finology Group â Insurtech Innovation Award 2024
Finology Group â Insurtech Innovation Award 2024
Â
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
Â
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Â
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
Â
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
Â
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Â
đŹ The future of MySQL is Postgres đ
đŹ The future of MySQL is Postgres đ
Â
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Â
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Â
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Â
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
Â
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Â
CTO Talk: HTML5, a clear and present danger
1.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 16/7/2013 Deny All © 2013 1 HTML5: Clear & Present Danger CTO Talk May 29, 2013 This event will start at 9:30am CEST, thanks for your patience
2.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 26/7/2013 Deny All © 2013 2 Hello! Renaud Bidou Chief Technology Officer Stéphane de Saint Albin VP Sales & Marketing
3.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 36/7/2013 Deny All © 2013 3 âą Our goal: share our views on the dangers associated with HTML5 in 60 minutes âą How it works â Youâre muted⊠â ⊠but please ask any questions using the chat tool â Weâll take a few minutes at the end to answer them Logistics
4.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 46/7/2013 Deny All © 2013 4 âą Clear and present danger â Not fully standardized yet â Supported by all browsers â User experience enhancements â New vulnerabilities â Disruptive for existing security tools âą Gartnerâs recommendation â âEnterprises must assess the risks of HTML5 and use appropriate security measures to mitigate risks for sensitive applicationsâ â In âPrepare to Deal with HTML Security Risksâ, 4 Sept 2012, John Girard, John Pescatore HTML5
5.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 56/7/2013 Deny All © 2013 5 Menu 1. HTML5 new capabilities 2. HTML5 tricks 3. Empowering common threats 4. Hackersâdreams come true
6.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 66/7/2013 Deny All © 2013 6Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 6 Whatâs new with HTML5
7.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 76/7/2013 Deny All © 2013 7Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 7 Poll #1
8.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 86/7/2013 Deny All © 2013 8 âą Project led by W3C âą Latest draft: HTML 5.1 â May 2, 2013 â Previous : December 17, 2012 â Previously : 13 drafts starting from January 22, 2008 âą Why HTML5 ? â Make HTML content natively dynamic â Support offline mode â Increase security control and tuning â Improve internals for performance, task parallelization etc. HTML5 short history
9.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 96/7/2013 Deny All © 2013 9 ⹠On-the-fly graphics with the <canvas> tag ⹠Native MP3, Ogg and Wav audio format support with the <audio> tag ⹠Native MP4, WebM and Ogg video format support with the <video> tag ⹠Drag & Drop ! with draggable attribute and ondrop event handler ⹠Embedded geolocation with the new getCurrentPosition() method New HTML content
10.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 106/7/2013 Deny All © 2013 10 âą New input types through <input type> attribute â Email : type="email" â URL: type="url" â Numbers: type="number" type="range" â Date: type="date" type="month" type="week" âą Embedded format validator â Based on type attribute value â Can be enforced through the pattern attribute â Can be disabled⊠donât try to understand⊠Input Validation <form novalidate>
11.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 116/7/2013 Deny All © 2013 11 New forms inputs <input type="email"> <input type="url"> <input pattern="d{4}" placeholder="4 digits PIN"> <input type="number" min="0" max="10" step="2" value="6">
12.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 126/7/2013 Deny All © 2013 12 ⹠Web Workers enable JavaScript background processing ⹠Web Storage improves local storage to extend the cookie concept and natively support session-based data handling ⹠WebApp Cache to enable offline mode of Web/Cloud based applications ⹠Server Sent Events (SSE) enables Server to Client communication through the established connection New HTML internals
13.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 136/7/2013 Deny All © 2013 13Securing & Accelerating Your Applications 6/7/2013 Deny All © 2012 13 HTML5 new security tricks
14.
To view full
slides or to listen to the webinar recording, please visit www.denyall.com/recordings_en.html Link is available in the description below.
15.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 156/7/2013 Deny All © 2013 15 Call to Action 1. Download the Forrester report â www.denyall.com/forrester-en/ 2. Evaluate Protect 4.1 FP1 â Now available in customersâ download area â Not a customer yet? Contact us today 3. Evaluate Detect 5.1 â https://edge.denyall.com â ftp://ftp-detect.denyall.com 4. Letâs talk about your needs â sales@denyall.com, +33 1 46 20 96 00
16.
Securing & Accelerating
Your Applications 6/7/2013 Deny All © 2012 166/7/2013 Deny All © 2013 16 Thank you! info@denyall.com +33 1 46 20 96 00