 |
|
 | |
 |
|
|
|
- Sjove billeder on Hugo Chavez vs Bush – Simply the best… LOL "es un borracho Mr. Danger"
- Gloss Websites on Flash Gallery Factory Deluxe(Giveaway Contest Extended)
- Luis on About
- Daniel Bunte on Runtime Font Embedding in AS3. There is no need to embed the entire fontset anymore
- araba on Tutorial | Flash Player 10 Beta: FileReference
A blog about JavaScript, AJAX, jQuery, Prototype, Mootools
Read HP laptop reviews on this informative laptop site
- About
- Menu
- About
- Advertise
- Flash 3D List
- Freebies
- Links
- Tutorials
- 3D Tutorials
- Adobe Acrobat 3D
- Adobe AIR Tutorials
- Adobe Dreamweaver Tutorials
- Adobe Flash Tutorials
- Adobe Flex Tutorials
- Adobe Illustrator Tutorials
- Adobe Media Player Tutorials
- Adobe Photoshop Tutorials
- Fireworks Tutorials
- Flash Lite Tutorials
- Papervision 3D Tutorials
- PHP Tutorials
- Sandy 3D Tutorials
- SilverLight Tutorials
- Search
- October 2010
- August 2010
- October 2009
- September 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- November 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
Adobe frequently updates the Flash Player software security model to improve the security of the Flash Player environment. However, that only addresses half of the overall solution to help securely deploy applications that run in Flash Player. As the web developer, you must also correctly leverage the tools provided by the ActionScript language and the Flash Player platform to help ensure that your SWF files are more secure. Poor programming conventions can expose SWF files and the sites that host them to web attacks. Adobe provides many resources to developers such as their Secure Programming Guide to assist with developing more secure code.
Peleus Uhley wrote a nice article that outlines many of the security considerations associated with common tasks and provides samples of techniques that can be used to help secure code against those threats. Links to the full documentation are provided throughout the article for further reference. These techniques are designed primarily for the Flash Professional development environment but they can also be applied by Flex developers.
His article covers several potential threats to SWF files such as:
- Cross-domain privilege escalation
- Spoofing
- Malicious data injection
- Script injection into the browser
- Insufficient authorization restrictions
- Unauthorized access to data in transit
- Unauthorized local data access
- Cross-site request forgery
- DNS rebinding
| Copy and Paste the code below | |
| Email and IM | |
| Websites | |
| Forums | |
Let leave a Comments for this post.
follow:- RSS