Feeds

EU: Check out our huge JavaScript appendage

Views sought on version 1 of €10m extension

SANS - Survey on application security programs

The EU's effort to extend JavaScript has hit version 1, and is asking for community comments on the effort to create (another) set of extensions to take JavaScript into the mainstream.

Webinos is backed by the EU to the tune of €10m, and the work is largely being done by Fraunhofer Fokus. The idea is to create standard extensions providing access to all the things JavaScript can't normally do, and then define a security framework which allows it to happen – just like the WAC is doing, and WebOS did.

That architecture will allow inter-application communication, and offline activation, and have access to the latest and greatest features like NFC, TV and secure wallets, which is why webinos has been forced to modify a few of the W3C standards as well as append a load.

This is just what WebOS did. All WebOS applications were developed using AJAX technologies, with proprietary extensions available to those accompanied by suitable certifications. Webinos is doing much the same thing, only with EU cash and the words "open source" thrown in every now and then.

Webinos is doing some server-side stuff too, and has specified APIs for dealing with remote services as well as available-service discovery. The intention is, eventually, to create a reference implementation, but for the moment we just have reference documents for both on-device and service-side APIs (PDF, and PDF respectively, both very long and very boring) which are open for comment.

The two big issues on a project like this are how many people will bother implementing it, and how the project addresses the problem of security. Lots of companies have signed up to the webinos dream – BMW, Telefonica, Samsung, NTT and the W3C to name a few – but that's not a commitment to make kit which is webinos-compatible.

When it comes to security there's the usual permissions-based model; applications present their credentials when requesting restricted APIs, but privacy is addressed directly in the concept of application contexts which are permitted access to specific user data.

So there appears nothing immediately wrong with webinos. It wasn't the choice of developer language which killed WebOS. Programmers might sneer at JavaScript as a development language, but with the right extensions it can do a lot of things, even if it feels like programming in BBC Basic.

The Wholesale Application Community (WAC) is trying to do the same thing for mobile phones, but at the moment other devices (such as Smart TVs and the like) are still using proprietary extensions, so a standard platform could have some mileage (though one might argue that MHEG is already providing just that). ®

High performance access to file storage

More from The Register

next story
This time it's 'Personal': new Office 365 sub covers just two devices
Redmond also brings Office into Google's back yard
Oh no, Joe: WinPhone users already griping over 8.1 mega-update
Hang on. Which bit of Developer Preview don't you understand?
Microsoft lobs pre-release Windows Phone 8.1 at devs who dare
App makers can load it before anyone else, but if they do they're stuck with it
Half of Twitter's 'active users' are SILENT STALKERS
Nearly 50% have NEVER tweeted a word
Internet-of-stuff startup dumps NoSQL for ... SQL?
NoSQL taste great at first but lacks proper nutrients, says startup cloud whiz
IRS boss on XP migration: 'Classic fix the airplane while you're flying it attempt'
Plus: Condoleezza Rice at Dropbox 'maybe she can find ... weapons of mass destruction'
Ditch the sync, paddle in the Streem: Upstart offers syncless sharing
Upload, delete and carry on sharing afterwards?
New Facebook phone app allows you to stalk your mates
Nearby Friends feature goes live in a few weeks
Microsoft TIER SMEAR changes app prices whether devs ask or not
Some go up, some go down, Redmond goes silent
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.