Answered You can hire a professional tutor to get the answer.
Complete 4 page APA formatted essay: Ripley: Automatically Securing Web 2.0 Applications Through Replicated Execution.A remedy could be, splitting the code in a way such that the security sensitive co
Complete 4 page APA formatted essay: Ripley: Automatically Securing Web 2.0 Applications Through Replicated Execution.
A remedy could be, splitting the code in a way such that the security sensitive computations are carried out on the server. However, this demands excessive code digging and annotating from the developers. Alternatively, manual validation on server side can be considered. However, maintaining responsiveness at client’s end alongside would be considerably challenging. The paper presents an alternative and easy solution in form of RIPLEY through which the integrity of server is ensured. RIPLEY is based on the idea that the computations that are executed at the client end are re-executed on the server. RIPLEY replicates the computations on the client tier onto the server tier. The events of every client are recorded and relayed to RIPLEY, which then re-computes and compares the results with those that were generated at the client. In case of matching discrepancies, a violation of computational integrity is noted and the connection with client is terminated. No matter how the code is split, RIPLEY ensures integrity, thus saving the developers from lengthy code analysis and partitioning process. RIPLEY can be integrated with the server cloud where it deploys automatically performing the three basic steps. capture events from browser, transmit the events to server and compare the results of client and server. Through RIPLEY, any code changes or malicious data is ignored. RIPLEY however does not provide input sanitization. The process of code replication is simplified when RIPLEY is integrated with Volta, a distributing compiler that provides narrow standardized API and DOM. Through Volta the need of copying the browser specific details into the replica is overruled. Communication of RIPLEY across different tiers can be achieved through RPC provided in Volta infrastructure. Volta is believed to preserve the original semantics while translating. If the application involves interacting with database at the server, introducing RIPLEY would not change anything. As computations are repeated, a burden is posed on the server in form of CPU time and memory. Owing to the transmission of events, some degree of network overhead is also expected when using RIPLEY. In view to the CPU overhead, the client replicas are run in .NET on the server, which is considerably faster than JavaScript. In view to the memory overhead, the replica is run within a lightweight headless browser emulator rather than a full fledge browser. In view to the network traffic, the transfer of events is combined with the existing RPC inside the same network packet. Rather than the full replication of client as done in the paper, partial replication can also be done in view to the overheads of RIPLEY. In some cases, use of RIPLEY increases the overall performance and responsiveness as the code executed on server are faster than in clients. Use of push technology the RPC results can be pushed to the browser resulting in 0-latency RPCs. The original .NET application is fed into Volta. Volta tier splits it into server application and the client replica and optionally the JavaScript based client tier. It replaces any cross tier calls with AJAX RPCs. All data transfers between server and client are serialized which de-serialized on receipt. The event capturing JavaScript code is added to the client tier. The custom and
