Client-Side Risks

Clients, especially those on the Internet, are, like servers, at risk in Web applications. It is possible for Web browsers to unknowingly download content and programs that could open up the client system to crackers and automated agents all over the Net. Malicious programs could collect and send sensitive and private information from the client machine to Net programs and servers that collect such information.

As a general rule, pure HTML 3.2, without client-side scripting, is rather secure. A Web page designer can do little to extract or to breach a client's security. Client-side risk usually involves the use of the following technologies:

  • Cookies

  • JavaScript

  • Java applets

  • ActiveX controls

  • Plug-ins

  • MIME-type viewers

Except for cookies, ...

Get Building Web Applications with UML now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.