Feeds

Has Microsoft matched Flash with Silverlight 3?

Redmond certainly hopes so

  • alert
  • submit to reddit

Combat fraud and increase customer satisfaction

Mix 09 Traditionally, version 3.0 is the moment when everything comes together for Microsoft. Has the company pulled this off with Silverlight 3.0, the beta of which was announced today here at Mix 09 in Las Vegas?

The list of new features is impressive, although behind almost every announcement, you can sense Microsoft looking nervously at what Adobe Systems is doing with Flash, both as a media client and as an application platform.

Adobe has AIR, for example, for desktop Flash applications. So, Microsoft has announced Silverlight out of the browser. Developers enable this with a couple of lines in the XML manifest, which configures a Silverlight applet. Users can then right-click and select Install onto this computer. It is also possible to create an install button programmatically. This copies the application locally and creates a shortcut to start it.

There is no security prompt, because Silverlight out of the browser is sandboxed in the same way as Silverlight in the browser. Access to local storage is limited to Microsoft's Isolated Storage, which is an application-specific area. It is 25MB by default but can be increased with user consent. You can write code to detect whether the system is online or offline, and changes in network status trigger an event you can handle. Application updates are near automatic when the version on the Internet changes.

What's different between AIR and Silverlight out of the browser? Quite a lot. Most AIR applications ask for full, local-file access, which means passing a security prompt. Microsoft's vice president of the .NET development platform Scott Guthrie told us this is a key point.

"End users are concerned when they see a big security dialog. What we're doing with Silverlight is to provide a sandbox experience. That starts to dramatically increase the number of scenarios where people feel comfortable clicking OK," he said.

Sandboxing is a double-edged sword. There are scenarios where an AIR application can make good use of its greater permissions. AIR applications also have features that Silverlight lacks. Only pure Silverlight applications will run out of the browser. If your application also needs HTML or script running in the browser, it cannot work, whereas AIR also includes WebKit for offline browser applications.

AIR also has a local-database manager, embedded SQLite. AIR has support for the notification area - sometimes wrongly called the system tray on Windows. Silverlight out of the browser will probably have this, though it is not certain. "It's something we will enable, but I don't know the timeframe," Guthrie said.

Microsoft has also addressed weaknesses in Silverlight's remote-data support. A new binary XML protocol means more efficient access to data delivered as XML. There is also a new server-side feature called .NET RIA Services.

"You can expose a domain service and do change tracking of any data you retrieve, submit the changes back, and the server will revalidate and then persist," explained Guthrie.

This is a REST service that builds on ADO.NET Data Services, once known as Astoria, and will be usable from AJAX web applications as well as in Silverlight. Data comes down by default in JSON format. Automatic synchronization of offline changes is not yet included, though Guthrie said: "The architecture is designed to enable that in future."

Combat fraud and increase customer satisfaction

Next page: Small package

More from The Register

next story
OpenBSD founder wants to bin buggy OpenSSL library, launches fork
One Heartbleed vuln was too many for Theo de Raadt
Got Windows 8.1 Update yet? Get ready for YET ANOTHER ONE – rumor
Leaker claims big release due this fall as Microsoft herds us into the CLOUD
This time it's 'Personal': new Office 365 sub covers just two devices
Redmond also brings Office into Google's back yard
Ubuntu 14.04 LTS: Great changes, but sssh don't mention the...
Why HELLO Amazon! You weren't here last time
Patch iOS, OS X now: PDFs, JPEGs, URLs, web pages can pwn your kit
Plus: iThings and desktops at risk of NEW SSL attack flaw
Next Windows obsolescence panic is 450 days from … NOW!
The clock is ticking louder for Windows Server 2003 R2 users
Batten down the hatches, Ubuntu 14.04 LTS due in TWO DAYS
Admins dab straining server brows in advance of Trusty Tahr's long-term support landing
Red Hat to ship RHEL 7 release candidate with a taste of container tech
Grab 'near-final' version of next Enterprise Linux next week
Apple inaugurates free OS X beta program for world+dog
Prerelease software now open to anyone, not just developers – as long as you keep quiet
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.