I believe that children are our future. And also, I believe, robots. Children and robots...
He turns quickly to issues of security in the browser:
The worst of all of its security problems is the so called cross site scripting attack, or XSS. It's not called CSS because that would be confused with the Crappy Style Sheets system that's in the browser. It really shouldn't be called cross site scripting either, because there are modes of this attack which have nothing to do with operating across sites. You can have one of these attacks happening within a site. What it really is is a confusion of interest attack. One thing that's unfortunate is that the security experts who identified and named it got it wrong, and have not corrected it since then, and expect all the web practitioners to be adopting their broken jargon. We're going to talk a lot about these classes of problems, and how we're going to fix them.
- Volume One: The Early Years
- Act III: Function the Ultimate
- Episode IV: The Metamorphosis of Ajax
- Part 5: The End of All Things
If the video embed below doesn't show up correctly in your RSS reader of choice, be sure to click through to watch the high-resolution version of the video on YUI Theater.
- Download HD video (480p ~705MB)
- Download video (m4v)
- Download slides
- A high-resolution, transcripted version of this talk is available on the YUI Theater site
Other Recent YUI Theater Videos:
- Christian Heilmann: YQL and YUI: Building Blocks for Quick Applications — The Yahoo! Developer Network's international evangelist Christian Heilmann discusses his philosophy for creating fast, powerful, compelling applications using the Yahoo Query Language (YQL) and the Yahoo User Interface Library (YUI).
- Philippe Le Hégaret: The Next Open Web Platform — Philippe Le Hégaret, who heads the W3C Interaction Domain, discusses HTML5. While the HTML5 specification itself does actually not contain many new features, the new Web platform, often labeled as HTML5, does come with many new features from HTML video to SVG to CSS animations or Web sockets. This talk gives an overview of what's ahead of us, using concrete demonstrations in latest generation Web browsers.
- Luke Smith: Events Evolved — YUI engineer Luke Smith provides a deep introduction to the YUI 3 event system including its support for DOM events, event delegation, synthetic events, and custom events.