Ajax Login

jmoran · Sep 2, 2008

Hello there.

I've been thinking if some AJAX-authentication system is secure since
Javascript is downloaded into the client machine...

Thanks in advance for your help.

Michael Wojcik · Sep 2, 2008

jmoran said:
I've been thinking if some AJAX-authentication system is secure

No software is "secure" outside context. Security can only be
evaluated as a set of risks under a threat model.

In this case, your description is so vague (what's being
authenticated? what's AJAX being used to do? how does this "system"
work?) that we couldn't even imagine a plausible threat model, much
less its risks.

since Javascript is downloaded into the client machine...

If the security of your system depends on the integrity or secrecy of
code under the attacker's control, you already have an abysmally weak
system, unless you have an extremely generous threat model (eg, no one
will try to attack the system).

Survey details won't go through using php, ajax, Mysql	0	Oct 26, 2023
How can I guarantee that the all callback functions of the first Ajax API call have finished executing before initiating the 2 call in JavaScript?	2	Oct 30, 2023
Ajax function only returns error and does not call php function	2	Aug 6, 2022
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples.	2	May 5, 2023
Write a JAVASCRIPT program that will parse the JSON structure once the PHP program is called using AJAX. You may show output using html	0	Jul 21, 2022
Problem with android and scrolling with <input textarea	5	May 18, 2022
AJAX vs form submission (character encoding)	2	Jan 26, 2012
Login form no longer working	2	Feb 18, 2023

Ajax Login

jmoran

Michael Wojcik

Ask a Question

Similar Threads

Members online

Forum statistics

Latest Threads