Author Archive for Hooman Beheshti

Thursday, December 3rd, 2009

How Performance Impacts KPIs: Velocity Online Conference

For anyone who missed it, Alistair had an interesting (and popular) post on watchingwebsites.com about how speeding up performance improves online business.   The data was gathered through some experimentation that Alistair helped us run with some Strangeloop customers.  Through the experiments, we were able to draw a direct link between web performance and Key Performance Indicators (KPIs) of the business, getting us closer to the holy grail of showing, in business terms, why performance matters.  Alistair presented the data in a joint webinar with Strangeloop in October.

Next tuesday, December 8th, I’ll be revisiting the data and presenting them again at the Velocity Online Conference, which is O’Reilly’s online version of the Velocity Conference.   The online version is also co-chaired by Steve Souders and Jesse Robbins, will run for half the day, and includes some pretty interesting presentations on topics that range from Varnish to SPDY to Steve’s impressive Browserscope initiative.  I’m excited to be a part of it and am looking forward to playing Alistair’s proxy in presenting the data, not to mention listening in on the other presentations.

I encourage all to attend.  And knowing how much Bitcurrent’s inquisitive readers will surely be interested in the event, I got us a bit of a discount too.  Here are all the pertinent details:

Hope to see you there.

Comments (0)
Categories : Uncategorized
Tags : , ,
Wednesday, April 23rd, 2008

Web2Expo – an inadvertent foray into security issues

I’m not a huge fan of security and everything that is associated with it. That’s not because I don’t think it’s important; I actually think it’s critical in both networking and application development. But, rather, it’s just not my thing and I’ve usually been in technology areas where security is important, but somewhat peripheral.

That being said, I attended a couple of sessions at Web2Expo today where security issues were a takeaway in both.

First, Jacob West (who’s written a book on security) gave an interesting talk on the “Dark Side of Ajax.” It’s not news that Ajax has some significant security holes that have been exposed already and are somewhat well known. Some examples:

  • Cross-site scripting lets malicious users insert bad javascript code into the content of a website and harm future visitors (the famous Myspace worm exploited this).
  • Cross-Site Request Forgery (CSRF or XSRF) is nasty and exploits websites that need user authentication (among other things)
  • And a new one called javascript hijacking that Jacob has actually written a paper on.

I’ve seen similar presentations at other Ajax/web2.0 events and it’s interesting to me how it’s a lot of talk about how there are problems and very little about what’s being done about them. Mr. West did talk about how some popular Ajax frameworks are addressing the javascript hijacking issue, which is great. But, what happens with the next vulnerability, and the one after that?

Read More→

Comments (2)
Categories : Uncategorized
Tags :
Creative Commons License
Proudly powered by WordPress