Web 2.0: Unsafe At Any Speed?
Page 1 of 2
Paul Ferguson, a network architect with antivirus vendor Trend Micro, summed up Web 2.0 as thus: "We're basically training our online users to be exploited."
He's not the only security expert who feels this way. Researchers who live and breathe malware told InternetNews.com in multiple interviews that the very nature of Web 2.0 technology and how it is used begs for malicious software infection and is virtually impossible to secure.
The laundry list of complaints about Web 2.0 security can be boiled down to two distinct problems: not knowing all of your data sources, and having no control over what may be served up.
"Web 2.0 sites are defined by user collaboration and user input. So whenever you have input from a user that can show up on a Web page to other people, that creates a form of risk," said Jon Orbeton, strategic product manager for IronPort, a developer of gateway filtering hardware.
Bob Buffone, chief architect with Nexaweb, a provider of Web 2.0-based applications for the enterprise, agrees. "From the end user's perspective, this third party code inclusion IFrame