Site Sponsor:

mcafee_logo.gif
line

Now Available:

Featured Resource:

line

Realtime Communities

line

Newsletter

Email Address:


line

Monthly Archives

line

RSS

line

Ask the Expert

Have a question for our resident expert? Email your questions to Dan or post a comment to the blog.

« Security Sandbox for Remote Workers | Main | Military Blocks Blogs Web 2.0 Sites; Will Businesses Follow? »

Poor Web 2.0 Design Harms Usability and Security

History is repeating itself. Poor usability was a problem with client server apps back when Visual Basic opened GUI design to pretty much every programmer. Then easy to use HTML tools turned us all into graphic designers. Now Web 2.0 tools are continuing the problem. Bad security seems to be on a parallel track.

Quoting Jakob Nielsen on usability the BBC reports in Web 2.0 'distracts good design':

Describing Web 2.0 as the "latest fashion", Mr Nielsen said many sites paying attention to it were neglecting some of the principles of good design and usability established over the last decade. ... "They should get the basics right first," he said. "Sadly most websites do not have those primary things right."

Pretty much the same thing can be said for security - designers should get the basics right first. The biggest problem with Web application security are clearly explained at the Open Web Application Security Project's Top Ten list of most common vulnerabilities.

Tags:            
 Email This!  Digg it!  Sphere it!  Del.icio.us  Reddit!  Newsvine

Posted by Dan Sullivan on May 14, 2007 9:46 AM |

TrackBack

TrackBack URL for this entry:
http://www.realtime-websecurity.com/type/mt-tb.cgi/303

Post a comment

(All comments are approved by site leader before appearing here. Thanks for commenting!)

Search

line

Most Active Posts

line

Library Resources

line
line

Recent Posts

line

Categories

line

Latest White Papers

line

Blog Roll

line

Dan Sullivan's Bio:

Dan Sullivan is a systems architect with 20 years of IT experience that includes engagements in enterprise security, application design, and systems architecture. His experience includes a broad range of industries, including financial services, manufacturing, government, retail, gas and oil production, power generation, and education. Dan’s security-related project work has ranged from requirements analysis for enterprise information security to designing and implementing security for database applications and enterprise portals. Dan has written about information security and other enterprise information management topics for Business Security Advisor, DM Review, Intelligent Enterprise, and E-Business Advisor. You can contact Dan at: dan_sullivan@realtimepublishers.net