[B! browser] kgbuã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

kgbu id:kgbu

browserã«é–¢ã™ã‚‹kgbuã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (166)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

ImperialViolet - Public key pinning
Starting with Chrome 13, we'll have HTTPS pins for most Google properties. This means that certificate chains for, say, https://www.google.com, must include a whitelisted public key. It's a fatal error otherwise. Credit goes to my colleague, Chris Evans, for much of this. The whitelisted public keys for Google currently include Verisign, Google Internet Authority, Equifax and GeoTrust. Thus Chrome
kgbu 2011/05/06
secuirty

ssl

chrome

browser

ã‚ã¨ã§èªã‚€
ãƒªãƒ³ã‚¯
HSTS
kgbu 2011/05/06
security

browser

chrome

ã‚ã¨ã§èªã‚€
ãƒªãƒ³ã‚¯
Androidæºå¸¯ã§ãƒ–ãƒ©ã‚¦ã‚¶ã‹ã‚‰ç·¯åº¦çµŒåº¦æƒ…å ±ã‚’å–å¾— - PHP,MySQL,Flex,JSãªæ—¥ã€…ï¼‹ã‚¤ãƒ©ã‚¹ãƒˆã¨ã‹
Androidæºå¸¯ã§ãƒ–ãƒ©ã‚¦ã‚¶ã‹ã‚‰ç·¯åº¦çµŒåº¦æƒ…å ±ã‚’å–å¾—ã™ã‚‹æ–¹æ³•ã§ã™ã€‚ ä»¥å‰ç´¹ä»‹ã—ãŸiPhone3.0ã®ã¨ãã¨çµæ§‹ä¼¼ã¦ã„ã‚‹ã®ã§ç°¡å˜ã«ã§ãã¾ã™ã€‚ ãƒšãƒ¼ã‚¸ã¯ã“ã¡ã‚‰ http://moeten.info/flex/20090713_android GPS/test.php Androidã‹iPhoneã‹ã‚‰ã‚¢ã‚¯ã‚»ã‚¹ã—ã¦ãï¼ ã“ã‚“ãªæ„Ÿã˜ã«ãƒ–ãƒ©ã‚¦ã‚¶ã®JavaScriptã‹ã‚‰ç°¡å˜ã«å–å¾—ã§ãã¾ã™ã‚ˆãƒ¼ã€‚ ç°¡å˜ãªèª¬æ˜Ž Androidã§ã¯gearsã‚’ä½¿ç”¨ã™ã‚‹ã“ã¨ã«ã‚ˆã£ã¦GPSæƒ…å ±ãŒæ‰±ãˆã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚ ã¾ãšã¯ã€ gears_init.js ã‚’ã‚¤ãƒ³ã‚¯ãƒ«ãƒ¼ãƒ‰ <script type="text/javascript" src="gears_init.js"></script> javascriptéƒ¨åˆ† //ç·¯åº¦çµŒåº¦å–å¾— function getGPS(){ var gps = google.gears.factory.
kgbu 2011/03/21
gears APIã¯ä»Š(2011å¹´)ã§ã¯depricatedãªã®ã‹ã€‚å¤‰åŒ–æ—©ã„ãªã€‚

gps

mobile

javascript

browser

android

iphone

programming

knowhow

ã‚ã¨ã§è©¦ã™

ã„ã¾ã•ã‚‰è¨Šã‘ãªã„
ãƒªãƒ³ã‚¯
Transport Layer Security (TLS) False Start
Transport Layer Security (TLS) False Start draft-bmoeller-tls-falsestart-00 Abstract This document specifies an optional behavior of TLS implementations, dubbed False Start. It affects only protocol timing, not on-the-wire protocol data, and can be implemented unilaterally. The TLS False Start feature leads to a latency reduction of one round trip for certain handshakes. Status of this Memo This I
kgbu 2010/12/08
ãƒãƒ³ãƒ‰ã‚·ã‚§ã‚¤ã‚¯ã®é€”ä¸ã§ã‚‚ã†HTTP Requestã‚’é€ã£ã¡ã‚ƒãŠã†ã¨ã„ã†è©±ã€‚ç›¸æ‰‹ãŒæ‚ªã„å¥´ã§ãªã„ä¿è¨¼ãŒå–ã‚Œã¦ã‹ã‚‰ã‹ã—ã‚‰ã€‚

ssl

standard

tuning

ãƒã‚¿

chrome

browser

performance

network

ã‚ã¨ã§èªã‚€

google
ãƒªãƒ³ã‚¯
WebSocketã®ç¾çŠ¶ã¨æŠ€è¡“çš„èª²é¡Œ
WebSocketã®ç¾çŠ¶ã¨æŠ€è¡“çš„èª²é¡Œï¼šWebSocketã§ç›®æŒ‡ã›ï¼ ãƒªã‚¢ãƒ«ã‚¿ã‚¤ãƒ Webï¼ˆ2ï¼‰ï¼ˆ1/2 ãƒšãƒ¼ã‚¸ï¼‰ ä»Šå›žã¯WebSocketã‚’å–ã‚Šå·»ãæŠ€è¡“çš„èª²é¡Œã‚„ã€å®Ÿè£…çŠ¶æ³ã«ã¤ã„ã¦ã”ç´¹ä»‹ã—ã¾ã™ã€‚ã¾ãŸç§ãŸã¡ãŒé–‹ç™ºã—ãŸã‚µãƒ¼ãƒ“ã‚¹ã€ŒPusherã€ã«ã¤ã„ã¦ã‚‚å–ã‚Šä¸Šã’ã¾ã™ã€‚ WebSocketã«é–¢é€£ã—ãŸæŠ€è¡“çš„èª²é¡Œ å‰å›žã®WebSocketã®ç´¹ä»‹ã‚’èªã‚“ã§ãã ã•ã£ãŸèªè€…ã®ã¿ãªã•ã‚“ã¯WebSocketã‚’è©¦ã—ã¦ã¿ãŸãã¦ãŸã¾ã‚‰ãªã„ã®ã§ã¯ãªã„ã§ã—ã‚‡ã†ã‹ã€‚ã§ã‚‚å°‘ã—å¾…ã£ã¦ãã ã•ã„ã€‚çš†ã•ã‚“ã‚’è„…ã‹ã™è¨³ã§ã¯ã‚ã‚Šã¾ã›ã‚“ãŒã€ä»¥ä¸‹ã®ç‚¹ã«ã¤ã„ã¦ã‚‚è€ƒãˆãªã‘ã‚Œã°ã„ã‘ã¾ã›ã‚“ã€‚ å¤‰åŒ–ã—ç¶šã‘ã‚‹ãƒ‰ãƒ©ãƒ•ãƒˆ IETFã®ãƒ‰ãƒ©ãƒ•ãƒˆã‚’è¦‹ã¦ã¿ã‚‹ã¨ã€æœ€åˆã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ï¼ˆ00ï¼‰ã¯2009å¹´ã®1æœˆã«ç–å®šã•ã‚ŒãŸã®ãŒåˆ†ã‹ã‚Šã¾ã™ã€‚ChromiumãŒæœ€åˆã«WebSocketã®å®Ÿè£…ã‚’ç™ºè¡¨ã—ãŸã“ã‚ã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã¯66ã®è¾ºã‚Šã§ã™ã€‚ ãã‚Œã‹ã‚‰ã—ã°ã‚‰ãã®é–“ã¯ãƒžã‚¤ãƒŠãƒ¼ãƒã‚§ãƒ³ã‚¸ã°ã‹ã‚Šã ã£ãŸ
kgbu 2010/10/26
ã¾ã ãƒ‰ãƒ©ãƒ•ãƒˆãŒæºã‚Œã¦ã‚“ã®ã‹ã€‚ãã‚Œã§æµè¡Œã‚‰ãªã„ã£ã¦ã®ã‚‚ã‚ã‚‹ã‚“ã‹ãªã€‚ã‚¹ã‚±ãƒ¼ãƒ«ã‚¢ã‚¦ãƒˆã®å•é¡Œã‚‚ãã†ã ãŒã€å®Ÿéš›ã®ã‚¢ãƒ—ãƒªã«ä½œã‚Šã“ã‚€ã‚»ãƒ³ã‚¹ã¨ã„ã†ã‹ãƒªãƒ†ãƒ©ã‚·ãŒä¸€èˆ¬åŒ–ã—ã¦ãªã„ã£ã¦ã®ã‚‚ã‚ã‚‹æ°—ãŒã™ã‚‹ã€‚

websockets

ã¾ã¨ã‚

Webã‚µãƒ¼ãƒ“ã‚¹

tutorial

benchmark

library

browser

network

technology

ã‚ã¨ã§èªã‚€
ãƒªãƒ³ã‚¯
OAuth 2.0å‘¨ã‚Šã®ä»•æ§˜ãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆã«ã¤ã„ã¦ - r-weblife
æ°—ã«ãªã£ã¦ã‚‹æ–¹ã€…ã€æœ€æ–°ã®Specã¯ã“ã®è¾ºã§ã™ã‚ˆã€‚http://tools.ietf.org/id/oauth http://tools.ietf.org/html/draft-ietf-oauth-v2 : The OAuth 2.0 Protocol ã“ã„ã¤ã®èª¬æ˜Žã¯ã‚„ã‚ã¨ãã¾ã™ã€‚ http://tools.ietf.org/html/draft-recordon-oauth-v2-device : OAuth 2.0 Device Profile OAuth Core 1.0a ã§å®šç¾©ã•ã‚Œã¦ã„ã‚‹ãƒ•ãƒãƒ¼ã¯webã¨clientã®ï¼’ã¤ãªã‚ã‘ã§ã™ã€‚ 1.0aã®Clientã®ãƒ•ãƒãƒ¼ãªã‚“ã¦æ‰‹å‹•ã®Tokenå…¥åŠ›ãªã‚“ã‹ãŒå¿…è¦ãªã®ã§ã€ã¾ãä½¿ã‚ã‚Œãªã„ã ã‚ã†ãªãƒ¼ã¨ãŠã‚‚ã„ã¤ã¤[Yahoo! JAPANã§ã¯ã—ã®ä»•æ§˜ã«å¯¾å¿œã—ã¦ã„ã‚‹|http://tech blog.yahoo.co.jp/web/openid/oau
kgbu 2010/08/20
OAuthã¨SASLã£ã¦ã€ã©ã†ã„ã†å†…å®¹ã ã‚ã€‚

OAuth

standard

document

ã‚ã¨ã§èªã‚€

ã¾ã¨ã‚

facebook

google

UI

browser

Webã‚µãƒ¼ãƒ“ã‚¹
ãƒªãƒ³ã‚¯
InfoQ: HTML5ã®ã‚±ãƒ¼ã‚¹ã‚¹ã‚¿ãƒ‡ã‚£ï¼šWebSockets, Canvas ãã—ã¦ JavaScriptã§ noVNCã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚’ä½œæˆ
åŽŸæ–‡(æŠ•ç¨¿æ—¥ï¼š2010/07/01)ã¸ã®ãƒªãƒ³ã‚¯ noVNC ã¯ã€VNCã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ã€ HTML5 WebSockets, Canvas ãã—ã¦ JavaScriptã‚’ä½¿ã£ã¦å®Ÿè£…ã•ã‚Œã¦ã„ã‚‹ã€‚InfoQã€ã¯ã€ Joel Martinæ°ã¨ã€ noVNCã¨ HTML5ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®é–‹ç™ºçµŒé¨“ã«ã¤ã„ã¦ã€å°‘ã—ã°ã‹ã‚Šã€Q&Aã‚’æŒã£ãŸ: InfoQ: Joelã•ã‚“ã€noVNCã®ã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£ã®å…¨ä½“åƒã¨æ§˜ã€…ãªã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆãŒã©ã®ã‚ˆã†ã«ã€ã„ã£ã—ã‚‡ã«ãªã£ã¦ã„ã‚‹ã®ã‹ï¼Œæ•™ãˆã¦ãã ã•ã„ã€‚ Joel: noVNCã®ã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£ã¯ã€ï¼–ã¤ã®ä¸»è¦ãªã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã‹ã‚‰ã§ãã¦ã„ã¾ã™: ã‚³ã‚¢ã® VNC/RFBå®Ÿè£…: ã“ã®ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã¯ã€ã™ã¹ã¦ã®RFBãƒ—ãƒãƒˆã‚³ãƒ«ã®æƒ…å ±ã‚’ã‚«ãƒ—ã‚»ãƒ«åŒ–ã—ã¦ã„ã¦ã€ä»–ã®ã™ã¹ã¦ã‚’å‹•ã‹ã™ã€ä¸»è¦ãªã‚¹ãƒ†ãƒ¼ãƒˆãƒžã‚·ãƒ³ã§ã™ã€‚ CanvasæŠ½è±¡å±¤: ã“ã®ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã¯ã€ HTML5ã€€CanvasAPIã‚’æŠ½è±¡åŒ–ã—ãŸå±¤
kgbu 2010/07/18
websocketã¨TCPã®æ•´åˆæ€§ã®ãŸã‚ã«proxyã‚’å®Ÿè£…ã—ã¡ã‚ƒã†ã¨ã‹ã€ã™ã”ã„ãªãã€‚

websockets

HTML5

standard

ã‚ã¨ã§èªã‚€

javascript

vnc

software

programming

technology

browser
ãƒªãƒ³ã‚¯
ImperialViolet - Overclocking SSL
(This is a write up of the talk that I gave at Velocity 2010 last Thursday. This is a joint work of myself, Nagendra Modadugu and Wan-Teh Chang.) The â€˜Sâ€™ in HTTPS stands for â€˜secureâ€™ and the security is provided by SSL/TLS. SSL/TLS is a standard network protocol which is implemented in every browser and web server to provide confidentiality and integrity for HTTPS traffic. If there's one point tha
kgbu 2010/07/06
tuning

protocol

ssl

network

standard

performance

ã¾ã¨ã‚

ã‚ã¨ã§èªã‚€

browser

Webã‚µãƒ¼ãƒ“ã‚¹
ãƒªãƒ³ã‚¯
HTML5Rocks - A resource for open web HTML5 developers
Web Platform Dive into the web platform, at your pace.
kgbu 2010/06/27
HTML5

google

ã‚ã¨ã§èªã‚€

webåˆ¶ä½œ

html

UI

Webã‚µãƒ¼ãƒ“ã‚¹

programming

standard

browser
ãƒªãƒ³ã‚¯
XAuth is a Lot Like Democracy
XAuth is a lot like democracy: Â The worst form of user identity prefs, except for all those others that have been tried (apologies to Churchill). Â I've just read Eran's rather overblown "XAuth - a Terrible, Horrible, No Good, Very Bad Idea", and I see that the same objections are being tossed around; I'm going to rebut them here to save time in the future. Let's take this from the top. Â XAuth is a
kgbu 2010/06/07
ãƒã‚¿

ã‚ã¨ã§èªã‚€

èªè¨¼

identity

security

Webã‚µãƒ¼ãƒ“ã‚¹

browser

xAuth

ã„ã¾ã•ã‚‰è¨Šã‘ãªã„
ãƒªãƒ³ã‚¯
Google æ¤œç´¢ã‚’æš—å·é€šä¿¡ã§å®‰å…¨ã«ä½¿ã†æ–¹æ³• - WebOS Goodies
WebOS Goodies ã¸ã‚ˆã†ã“ãï¼ WebOS ã¯ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã®æœªæ¥å½¢ã€‚ã‚ã‚‰ã‚†ã‚‹ Web ã‚µã‚¤ãƒˆãŒç¹‹ãŒã‚Šã€å…±æœ‰ã—ã€å”åŠ›ã—ã¦å‰µã‚Šä¸Šã’ã‚‹ã€ã²ã¨ã¤ã®å·¨å¤§ãªæƒ…å ±ã‚·ã‚¹ãƒ†ãƒ ã§ã™ã€‚ãã“ã§ã¯ã€ã‚ã‚‰ã‚†ã‚‹æƒ…å ±ãŒãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ä¸Šã«è“„ç©ã•ã‚Œã€æˆ‘ã€…ã¯ã„ã¤ã§ã‚‚ã€ã©ã“ã‹ã‚‰ã§ã‚‚ã€å¤šå½©ãªãƒ‡ãƒã‚¤ã‚¹ã‚’ä½¿ã£ã¦ãã‚Œã‚‰ã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã¾ã™ã€‚ WebOS Goodies ã¯ã€ã•ã¾ã–ã¾ãªæƒ…å ±æä¾›ã‚„ãƒ„ãƒ¼ãƒ«é–‹ç™ºã‚’é€šã—ã¦ã€ãã‚“ãªä¸–ç•Œã®å®Ÿç¾ã«å°‘ã—ã§ã‚‚è²¢çŒ®ã™ã‚‹ã¹ãæ´»å‹•ã—ã¦ã„ãã¾ã™ã€‚ Google æ¤œç´¢ã¯ã©ã‚“ã©ã‚“ãƒ‘ãƒ¼ã‚½ãƒŠãƒ©ã‚¤ã‚ºãŒé€²ã‚“ã§ã„ã¾ã™ãŒã€ãã‚Œã«ä¼´ã£ã¦ãƒ—ãƒ©ã‚¤ãƒã‚·ãƒ¼ã¸ã®æ‡¸å¿µã‚‚å¤§ãããªã£ã¦ã„ã¾ã™ã€‚æ¤œç´¢ã‚ãƒ¼ãƒ¯ãƒ¼ãƒ‰ã¯ãã‚Œè‡ªèº«ãŒãƒ—ãƒ©ã‚¤ãƒ™ãƒ¼ãƒˆãªæƒ…å ±ã§ã™ã—ã€å±¥æ´ã‚„ã‚¹ã‚¿ãƒ¼ã®æƒ…å ±ãªã©ã‚‚å«ã‚ã‚Œã°ã€æ¼ã‚ŒãŸæ™‚ã®ãƒ€ãƒ¡ãƒ¼ã‚¸ã¯ Amazon ãŠã™ã™ã‚å•†å“ã®æ¯”ã§ã¯ã‚ã‚Šã¾ã›ã‚“ï¼ˆç¬‘ï¼‰ã€‚ ãã®ã‚ˆã†ãªçŠ¶æ³ã«å¯¾å¿œã™ã‚‹ãŸã‚ã€ Google ãŒè©¦é¨“çš„ã« SSL ã§æš—å·åŒ–ã•ã‚ŒãŸ Goog
kgbu 2010/05/26
å„ãƒ–ãƒ©ã‚¦ã‚¶ã®æ¤œç´¢çª“ã« SSL å¯¾å¿œã® Google æ¤œç´¢ã‚’è¿½åŠ ã™ã‚‹æ–¹æ³•ã‚’ã”ç´¹ä»‹

ã„ã¾ã•ã‚‰è¨Šã‘ãªã„

ãƒã‚¿

ssl

google

æ¤œç´¢

æ¤œç´¢ã‚¨ãƒ³ã‚¸ãƒ³

browser

tips

privacy

security
ãƒªãƒ³ã‚¯
[OAuth] æºå¸¯ã§foursquareã®OAuthã‚’ç„¡ç†ã‚„ã‚Šã‚„ã£ã¦ã¿ãŸ
ãƒ¢ãƒã‚¤ãƒ«ãƒ•ã‚©ãƒ¼ã‚¹ã‚¯ã‚¨ã‚¢ã®é–‹ç™ºåˆæœŸã«ã€OAuthã§foursquareã®èªè¨¼ã‚’ã‚„ã‚ã†ã¨ã—ã¦ã„ãŸæ™‚ã«è©¦ã—ãŸçµæžœã§ã™ã€‚æ‰‹å…ƒã«ã‚ã£ãŸAU,docomoã®ç«¯æœ«ã§ç¢ºèªã—ã¦ã„ã¾ã™ã€‚ AU(W61CA)ã§foursquareã®OAuthã‚’ã‚„ã£ã¦ã¿ãŸ ãƒã‚°ã‚¤ãƒ³ç”»é¢ æ‰¿èªç”»é¢ æ—¥æœ¬èªžæ–‡å—åŒ–ã‘â€¦ æ–‡å—åŒ–ã‘ï¼†DenyãŒæŠ¼ã›ãªã„ãŒã€å‹•ä½œã¯OKï¼ docomo Cookieå¯¾å¿œæ©Ÿç¨®(N-07A)ã§foursquareã®OAuthã‚’ã‚„ã£ã¦ã¿ãŸãƒã‚°ã‚¤ãƒ³ç”»é¢ æ‰¿èªç”»é¢ ãƒ‡ã‚¶ã‚¤ãƒ³ã¯å´©ã‚Œã‚‹ãŒã€å‹•ä½œã¯OK! ãƒ‡ã‚¶ã‚¤ãƒ³ã¯å´©ã‚Œã‚‹ãŒã€å‹•ä½œã¯OK! docomo Cookieéžå¯¾å¿œæ©Ÿç¨®(SH704i)ã§foursquareã®OAuthã‚’ã‚„ã£ã¦ã¿ãŸãƒã‚°ã‚¤ãƒ³ç”»é¢â†’è¡¨ç¤ºãŒå´©ã‚Œã€ãƒã‚°ã‚¤ãƒ³ãƒœã‚¿ãƒ³ã‚’æŠ¼ã—ã¦ã‚‚åŒã˜ç”»é¢ãŒç¹°ã‚Šè¿”ã—è¡¨ç¤ºã•ã‚Œã‚‹ã ã‘â€¦ã€‚ â€»å½“æ™‚ã¯ãƒã‚°ã‚¤ãƒ³ã§ãã¦ã„ãŸè¨˜æ†¶ãŒâ€¦ã€ã‚µãƒ¼ãƒå´ã®å®Ÿè£…ãŒå¤‰ã‚ã£ãŸã‹ã‚‚ã—ã‚Œãªã„ã§ã™ ã¾ã¨ã‚Cookieå¯¾å¿œæ©Ÿãªã‚‰
kgbu 2010/05/25
cookieå¯¾å¿œã—ã¦ã‚Œã°ãªã‚“ã¨ã‹ãªã‚Šãã†ãªã‚“ã ã‘ã©ã€ç”»é¢ãŒå´©ã‚Œã¡ã‚ƒã†ã‚±ãƒ¼ã‚¹ãŒã‚ã‚‹ã®ã¯ã“ã¾ã£ãŸã‚‚ã‚“ã

OAuth

test

æºå¸¯é›»è©±

mobile

Webã‚µãƒ¼ãƒ“ã‚¹

ãƒã‚¿

browser

cookie

security
ãƒªãƒ³ã‚¯
Jisp - Lisp implementation in JavaScript
Jisp - a dialect of Lisp in JavaScript Brian Morearty May 10, 2006 (with major additions July, 2007) Jisp is a new dialect of Lisp that I invented. I realized that JavaScript has so many similarities with Lisp that it would be easy to write a JavaScript-based Lisp language that uses the browser's JavaScript parser rather than writing my own parser. It turned out to be even easier than I expected--
kgbu 2010/05/24
via @matz

programming language

javascript

lisp

ãƒã‚¿

browser
ãƒªãƒ³ã‚¯
Security:Renegotiation - MozillaWiki
The purpose of this document is to summarize security issue CVE-2009-3555 (a man-in-the-middle vulnerability in the TLS/SSL protocol) which applies to SSL/TLS/https/etc., to describe what action has been taken in Mozilla, and to describe what action other parties should take. Background In 2009, a flaw was discovered in the SSL/TLS protocol which is widely used in Internet applications, for exampl
kgbu 2010/05/12
ã‚ã¨ã§èªã‚€

security

browser

ssl

TLS

ã„ã¾ã•ã‚‰è¨Šã‘ãªã„

ã¾ã¨ã‚

protocol
ãƒªãƒ³ã‚¯
140æ–‡å—ä»¥å†…ã§ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ä¸¸è¦‹ãˆ - latest log
ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚’å¿˜ã‚Œã¡ã‚ƒã£ãŸæ™‚ãªã©ã«ã€‚ Firefox3.5+, Safari4+, Google Chrome, Opera10.10+ ã§å‹•ãã¾ã™ã€‚IE9ã§ã‚‚å‹•ãã‹ã‚‚ã—ã‚Œã¾ã›ã‚“ 76byte javascript:document.querySelector("input[type=password]").type="text";void 0
kgbu 2010/05/04
ãƒã‚¿

javascript

browser

security
ãƒªãƒ³ã‚¯
Native Client and Web Portability
$200K 1 10th birthday 4 abusive ads 1 abusive notifications 2 accessibility 3 ad blockers 1 ad blocking 2 advanced capabilities 1 android 2 anti abuse 1 anti-deception 1 background periodic sync 1 badging 1 benchmarks 1 beta 83 better ads standards 1 billing 1 birthday 4 blink 2 browser 2 browser interoperability 1 bundles 1 capabilities 6 capable web 1 cds 1 cds18 2 cds2018 1 chrome 35 chrome 81
kgbu 2010/03/31
browser

chrome

performance

compiler

ã‚ã¨ã§èªã‚€

technology

google
ãƒªãƒ³ã‚¯
JavaScriptãŒé…ã„4ã¤ã®åŽŸå› ã¨ã¯ï¼Ÿ
1ã¤å‰ã®è¨˜äº‹ã€ŒJavaScriptã‚’ã„ã‹ã«é«˜é€ŸåŒ–ã™ã‚‹ã‹ã€IE9ã€Firefoxã®å–ã‚Šçµ„ã¿ã€ã§ã¯ã€IE9ã¨Firefoxã«ãŠã‘ã‚‹JavaScriptã®é«˜é€ŸåŒ–ã«ã¤ã„ã¦ç´¹ä»‹ã—ã¾ã—ãŸãŒã€ãã‚‚ãã‚‚JavaScriptã®å®Ÿè¡Œé€Ÿåº¦ã¯ãªãœé…ã„ã®ã§ã—ã‚‡ã†ï¼Ÿ ãã®ç†ç”±ã«ã¤ã„ã¦ã€Mozilla Japanãƒ†ã‚¯ãƒ‹ã‚«ãƒ«ãƒžãƒ¼ã‚±ãƒ†ã‚£ãƒ³ã‚°æ‹…å½“ã®æµ…äº•æ™ºä¹Ÿæ°ãŒã€ã‚¹ãƒ©ã‚¤ãƒ‰ã€ŒTrace Monkeyã€ã§ãƒã‚¤ãƒ³ãƒˆã‚’ã¾ã¨ã‚ã¦ã„ã¾ã™ï¼ˆã“ã®ã‚¹ãƒ©ã‚¤ãƒ‰ã¯ã‚¿ã‚¤ãƒˆãƒ«ã‹ã‚‰åˆ†ã‹ã‚‹ã¨ãŠã‚Šã€Firefoxã®å½“æ™‚ã®æ–°ã—ã„JavaScriptã‚¨ãƒ³ã‚¸ãƒ³ã€ŒTrace Monkeyã€ã‚’ç´¹ä»‹ã™ã‚‹ãŸã‚ã«1å¹´ä»¥ä¸Šå‰ã«ä½œæˆã•ã‚ŒãŸã‚¹ãƒ©ã‚¤ãƒ‰ã§ã™ãŒã€1ã¤å‰ã®è¨˜äº‹ã‚’è¦‹ã‚‹ã¨ã€ã“ã“ã§ç¤ºã•ã‚ŒãŸèª²é¡Œã¯ã„ã¾ã‚‚å¤‰ã‚ã£ã¦ã„ãªã„ã‚ˆã†ã§ã™ï¼‰ã€‚ å…¨67æžšã®ã‚¹ãƒ©ã‚¤ãƒ‰ã®20æžšç›®ã‹ã‚‰24æžšç›®ã®5æžšã‚’ä»¥ä¸‹ã«ç´¹ä»‹ã—ã¾ã™ã€‚ JavaScriptãŒé…ã„åŽŸå› ã¯ã€ä»¥ä¸‹ã®4ç‚¹ã«ã¾ã¨ã‚ã‚‰ã‚Œã¦ã„ã¾ã™ã€‚ ã‚¤ãƒ³ã‚¿ãƒ¼ãƒ—ãƒªã‚¿åž‹è¨€
kgbu 2010/03/24
ã„ã¾ã•ã‚‰è¨Šã‘ãªã„

ãƒã‚¿

ã¾ã¨ã‚

javascript

performance

programming language

browser

tuning
ãƒªãƒ³ã‚¯
Is my site safe? Check your SSL certificate!
Total solutions focused on the information security pillars People, Process, Techno logy and Monitoring.
kgbu 2010/03/22
ã‚µã‚¤ãƒˆã®SSLè¨¼æ˜Žæ›¸ãŒãã¡ã‚“ã¨ã—ãŸã‚‚ã®ã§ã‚ã‚‹ã‹ã€ãã¡ã‚“ã¨è¨å®šã•ã‚Œã¦ã„ã‚‹ã‹ã®ãƒã‚§ãƒƒã‚¯ãƒ„ãƒ¼ãƒ«ã‚‰ã—ã„ã€‚

ssl

test

tool

Webã‚µãƒ¼ãƒ“ã‚¹

ã‚µãƒ¼ãƒæ§‹ç¯‰

browser

PKI

security

privacy

ã‚ã¨ã§è©¦ã™
ãƒªãƒ³ã‚¯
isaiahâ€™s web log â€” Five things you didnâ€™t know about xAuth.
my name's isaiah. i run YourHead Software. we make Stacks and other nice things. xAuth is a new twist on the OAuth athentication system. It allows desktop applications to use the OAuth with and alternate workflow. The new flow is specifically designed for desktop and mobile and does not require that the applicaton open a web browser. 1. xAuth isnâ€™t for everyonexAuth was designed specifically to im
kgbu 2010/03/09
xAuth was designed specifically to improve the user experience on desktop, mobile, and platforms where web browsers are not available. Web-apps should continue to use the original OAuth flow.

xAuth

OAuth

èªè¨¼

security

webã‚µãƒ¼ãƒ“ã‚¹

ã‚µãƒ¼ãƒæ§‹ç¯‰

ã‚ã¨ã§èªã‚€

ã„ã¾ã•ã‚‰è¨Šã‘ãªã„

browser

API
ãƒªãƒ³ã‚¯
è‡ªå •è½ãªæŠ€è¡“è€…ã®æ—¥è¨˜ : ãƒ–ãƒ©ã‚¦ã‚¶ãŒå¯¾å¿œã™ã‚‹SSL/TLS CipherSuiteä¸€è¦§ - livedoor Blogï¼ˆãƒ–ãƒã‚°ï¼‰
åŸºæœ¬ã¯å–°ã£ã¦ã‚‹ã‹é£²ã‚“ã§ã‚‹ã‹ã§ã™ãŒã€ã‚ˆãè¶£å‘³ã§ã‚«ãƒ©ã‚ªã‚±ãƒ»PKIãƒ»ç½²åãƒ»èªè¨¼ãƒ»ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°ãƒ»æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚’ã‚„ã£ã¦ã„ã¾ã™ã€‚æ—…å¥½ãã€‚ãƒ†ãƒ¬ãƒ“å¥½ãã§èŠ¸èƒ½é€š å°‘ã—å‰ã«ã‚¦ã‚§ãƒ–ãƒ–ãƒ©ã‚¦ã‚¶ãŒHTTPSé€šä¿¡ã™ã‚‹éš›ã®CipherSuiteã‚’èª¿ã¹ã¦ã¿ã‚ˆã†ã¨æ€ã£ã¦è¡¨ã‚’ä½œã£ã¦ã‚ã‚Šã¾ã—ãŸã€‚ä»Šæ—¥ã€ã¡ã‚‡ã£ã¨æ™‚é–“ãŒã‚ã£ãŸã®ã§å¯¾è±¡ãƒ–ãƒ©ã‚¦ã‚¶ã‚’æ–°ã—ã„ã‚‚ã®ã«ã—ã¦è¡¨ã‚’æ›´æ–°ã—ãŸã®ã§ã€å…¬é–‹ã—ã‚ˆã†ã¨æ€ã„ã¾ã™ã€‚ ä»¥ä¸‹ã®ãƒ–ãƒ©ã‚¦ã‚¶ã«ã¤ã„ã¦èª¿ã¹ã¦ã„ã¾ã™ã€‚ Microsoft Internet Explorer 8.0 / Windows XP SP3 Microsoft Internet Explorer 7.0 / Windows Vista Firefox 3.6 / Windows XP SP3 Firefox 3.6 / Windows Vista Opera 10.10 / Windows XP SP3 Opera 10.10 / Wi
kgbu 2010/03/08
security

ssl

browser

knowhow

survey

ã¾ã¨ã‚
ãƒªãƒ³ã‚¯
1 2 3 4 5 6 7 8 9 æ¬¡ã®ãƒšãƒ¼ã‚¸