call but the contract is dictated by the caller (not the callee) when something happens, I’m going to send you Y just tell me where Respond back with X OR call me back HERE 23
call but the contract is dictated by the caller (not the callee) when something happens, I’m going to send you Y just tell me where Respond back with X OR call me back HERE OK 23
call but the contract is dictated by the caller (not the callee) when something happens, I’m going to send you Y just tell me where Respond back with X OR call me back HERE OK 23
specifically Websockets, rather affects all sockets over HTTP including Flash and Java • IETF study of 47,338 HTTP proxies tested found 0.37% and 0.017% were vulnerable to the two attack types • Browser vendors want to bulletproof Websocket wire protocol to handle even buggy implementations of intercepting proxies • Websocket protocol R6 introduced 2/6/2011, actively being reviewed. More info: http://tools.ietf.org/wg/hybi/ http://security.sys-con.com/node/1642956 Websockets 48
specifically Websockets, rather affects all sockets over HTTP including Flash and Java • IETF study of 47,338 HTTP proxies tested found 0.37% and 0.017% were vulnerable to the two attack types • Browser vendors want to bulletproof Websocket wire protocol to handle even buggy implementations of intercepting proxies • Websocket protocol R6 introduced 2/6/2011, actively being reviewed. More info: http://tools.ietf.org/wg/hybi/ http://security.sys-con.com/node/1642956 Websockets Resolved 48
server-side Javascript • client-side development likeness • Javascript designed specifically to be used with an event loop • non-blocking libraries • FAST, underpinned by V8 • community momentum 59
(webhook) 3. Status (websocket) 4. Respond Say + Record 5. Say 6. Record 8. Recording (websocket) 7. New Recording POST (webhook) /twillio /socket.io 67
(webhook) 3. Status (websocket) 4. Respond Say + Record 5. Say 6. Record 8. Recording (websocket) 7. New Recording POST (webhook) /twillio /socket.io 9. <audio/> GET Recording 67