< Using Silverlight for workflow creation | Home | Silverlight Sneak Peek: Building line-of-business with Silverlight >

Advertisement

Silverlight Guidance: Whitepapers on SEO, Security, Media

posted @ Friday, March 06, 2009 4:25 PM | 3 Comments

Did you know that there are some whitepapers on Silverlight development?  Just recently released is one on security in Silverlight development and deployment.  You can view some others (some older, but there are still some gems):

  • Security Guidance for Silverlight Applications
  • Search Engine Optimization (SEO) for Silverlight Applications
  • Silverlight and Web Analytics
  • Content Protection
  • Silverlight Migration Guide – Upgrading Online Media

These can all be found on the Silverlight community site in the whitepapers section.  We’ll be adding more soon, hmmm, say around March perhaps?

This work is licensed under a Creative Commons Attribution By license.

  1. Gravatar
    Greg Neilson
    3/9/2009 4:07 AM | # re: Silverlight Guidance: Whitepapers on SEO, Security, Media
    Hi Tim,

    Thanks for the post about these. I'm specifically interested in security issues around Silverlight clients at present as we're looking at developing a LOB application using Silverlight in out presentation layer. The "Security Guidance for Writing and Deploying Silverlight Applications" document is very useful in terms of info on XSS, browser sandbox, cross domain calls etc. and I know we'll be referring to it.

    However, what I'm really looking for at the moment is guidance and best practice around security issues with the communication between a Silverlight client and WCF web services on the back end. Because Silverlight only supports basicHTTPBinding, and not wsHttpBinding, and only transport security and not message security, it seems we may have to write a whole bunch of stuff to replicate the WS-* standards built into wsHttpBinding (WS-Security, WS-ReliableMessaging).

    I have two questions really:

    1) Are you going to introduce wsHttpBinding capability into Silverlight? ( you probably can't/won't answer that one at present I guess :) )

    2) Do you know of any guidance anywhere that might help us come up with a custom solution on the Silverlight end to provide message security, protection against replay attacks etc?

    Cheers,
    Greg
  2. Gravatar
    timheuer
    3/9/2009 10:54 AM | # re: Silverlight Guidance: Whitepapers on SEO, Security, Media
    Hi Greg. #1 we're constantly thinking of ways to improve ;-) -- right now most of our limitations fall in that we leverage the browser networking stack. #2 I'm not aware of any specifically right now, no.
  3. Gravatar
    Greg Neilson
    3/10/2009 1:47 AM | # re: Silverlight Guidance: Whitepapers on SEO, Security, Media
    Thanks for your feedback Tim. I think I'm going to wait for MIX 09 and see if there are any bones for us serious LOB developers before making any decisions on our security.

 
Please add 8 and 8 and type the answer here:
First time here? You are looking at the most recent posts. You may also want to check out older archives. Please leave a comment, ask a question and consider subscribing to the latest posts via RSS or email. Thank you for visiting! (hide this)