Skip to content
August 1, 2011 / David Bleeker

European security agency issues HTML5 warning

The European Union’s computer security agency is warning that standards under development as part of HTML5 are undergoing rewrites that may neglect important security issues.

The European Network and Information Security Agency (ENISA) released on Monday a 61-page document analyzing HTML5, the latest specification for the Web’s coding mother tongue.

“I think this is special in that it’s the first time anyone has look at those suites of specifications together from a security point of view,” said Giles Hogben, program manager for secure services at ENISA.

ENISA look at 13 specifications within HTML5 and found 51 security issues. Some of the issues can be fixed by tweaking the specifications, while others are more risks based on the features that users should be alerted to, Hogben said. One of the features that concerns ENISA in the paper is termed “form tampering.” [read more]

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: