Client-Side Risks

Clients, especially those on the Internet, are, like servers, at risk in Web applications. It is possible for Web browsers to unknowingly download content and programs that could open up the client system to crackers and automated agents all over the Net. Malicious programs could collect and send sensitive and private information from the client machine to Net programs and servers that collect such information.

As a general rule, pure HTML 3.2, without client-side scripting, is rather secure. A Web page designer can do little to extract or to breach a client's security. Client-side risk usually involves the use of the following technologies:

  • Cookies

  • JavaScript

  • Java applets

  • ActiveX controls

  • Plug-ins

  • MIME-type viewers

Except for cookies, ...

Get Building Web Applications with UML now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.