Monday, May 14, 2007
HTML 5 in the works
For those into bleeding-edge web application security research, HTML 5 is currently being worked on. Looks like the working group is adding a lot of functionality to the specification and amazingly enough paying attention to security. Right on. "XSS" can actually be found in several instances in the document. Perhaps this is a good time to start theorizing and developing new attack techniques, defensive measures, and having a look at areas likely to suffer from implementations flaws when supported.