Do Web Development Frameworks Need a Security Patch?

By HTMLGoodies Staff

Experts who have been discussing the topic agree that secure web development is largely lacking, and that something needs to be done to fix the web development frameworks so that developers can create effective, secure web applications.

Web application security pro Rafal Los, who works for HP Software and Solutions, stated "What if some frameworks had security features built into them that wouldn't make security an afterthought? What if we fixed the frameworks so it was harder to write insecure code, and that you had to [actually] purposely write code insecurely to make it insecure?"

Developers are subject to the tools that are available to them, and with more developers using prebuilt web development frameworks (including JSF, Struts, Spring, and DWR), applications designed for the web are filled with security holes.

View Full Article

Make a Comment

Loading Comments...

  • Web Development Newsletter Signup

    Invalid email
    You have successfuly registered to our newsletter.

    By submitting your information, you agree that htmlgoodies.com may send you HTMLGOODIES offers via email, phone and text message, as well as email offers about other products and services that HTMLGOODIES believes may be of interest to you. HTMLGOODIES will process your information in accordance with the Quinstreet Privacy Policy.

Thanks for your registration, follow us on our social networks to keep up-to-date