More Web Proxy on the site http://driver.im/

research-article

Race condition in Ajax-based web application

Authors:

Therese J. Albert,

Xiang FuAuthors Info & Claims

ACMSE '08: Proceedings of the 46th annual ACM Southeast Conference

Pages 390 - 393

https://doi.org/10.1145/1593105.1593208

Published: 28 March 2008 Publication History

Abstract

The atomicity is an important issue in asynchronous based data communication. In the modern web application today, asynchronous introduces hazardous effect causing unexpected results. This paper discusses the race condition occurred between the user request and server response due to the asynchronous nature of the web application using Ajax. A race condition occurs when multiple threads in a process try to modify the critical section data at the same time. The data will depend on which thread arrived last. Concurrent requests will be running asynchronously and it is impossible to predict which will return first. The locking mechanism is not a very effective way but may avoid race condition. Our future project develops a more effective way to detect the race conditions while parsing.

References

[1]

Race Conditions with Ajax and PHP Session, http://thwartedefforts.org/2006/11/11/race-conditions-with-ajax-and-php-sessions/

[2]

Macwan, Troubles with Asynchronous Ajax Requests and PHP Sessions, http://www.chipmunkninja.com/article/asyncsessions

[3]

Harry Fuecks, AJAX and Session "Race Conditions", http://www.sitepoint.com/blogs/2006/02/27/ajax-and-session-race-conditions/

[4]

A. Pnueli. The temporal semantics of concurrent programs. In Proceedings of the 18th Symposium on Foundations of Computer Science, 1977.

[5]

M. Y. Vardi and P. Wolper. An automata-theoretic approach to automatic program verification. In Proceedings of the First Symposium on Logic in Computer Science, pages 322--331, Cambridge, June 1986.

[6]

Stefano Di Paola [email protected], Giorgio Fedon [email protected], Subverting Ajax, December 2006

[7]

Jeremy Keith, Dom Scripting.

[8]

http://www.h-spot.net/threat_glossary.htm

[9]

J. J. Garrett, Ajax: A New Approach to Web Applications, http://www.adaptivepath.com/publications/essays/archives/000385.php

[10]

Gary McGraw, John Viega, Building Secure Software: Race Conditions.

[11]

Michael Sonntag, Institute for Information Processing and Microprocessor Technology, Johannes Kepler University Linz, Altenbergerstr, Ajax Security in Groupware.

[12]

Ali Mesbah, Arie van Deursen Software Evolution Research Laboratory, Delft University of Technology, An Architectural Style for Ajax

[13]

PHP Manuel, www.php.net

[14]

Semaphore, http://en.wikipedia.org/wiki/Semaphore_%28programming%29

[15]

Greg Murray, Asynchronous JavaScript Technology and XML (Ajax) with the Java Platform.

Cited By

Grechanik MHossain BJohn LSmith CSachs KLladó C(2015)Enhancing Performance And Reliability of Rule Management PlatformsProceedings of the 6th ACM/SPEC International Conference on Performance Engineering10.1145/2668930.2688035(187-198)Online publication date: 28-Jan-2015
https://dl.acm.org/doi/10.1145/2668930.2688035
Hussain TWeippl EIndrawan-Santiago MSteinbauer MKotsis GKhalil I(2013)An Approach to Evaluate the Performance of Web Application SystemsProceedings of International Conference on Information Integration and Web-based Applications & Services10.1145/2539150.2539264(692-696)Online publication date: 2-Dec-2013
https://dl.acm.org/doi/10.1145/2539150.2539264
Khojasteh HAbhari AMcGraw RImsand EChinni M(2010)Mobile mash-up model based on hybrid P2P using Ajax technologyProceedings of the 2010 Spring Simulation Multiconference10.1145/1878537.1878778(1-4)Online publication date: 11-Apr-2010
https://dl.acm.org/doi/10.1145/1878537.1878778

Index Terms

Race condition in Ajax-based web application

Recommendations

Race detection for web applications
PLDI '12

Modern web pages are becoming increasingly full-featured, and this additional functionality often requires greater use of asynchrony. Unfortunately, this asynchrony can trigger unexpected concurrency errors, even though web page scripts are executed ...
A versatile STM protocol with invisible read operations that satisfies the virtual world consistency condition
SIROCCO'09: Proceedings of the 16th international conference on Structural Information and Communication Complexity

The aim of a Software Transactional Memory (STM) is to discharge the programmers from the management of synchronization in multiprocess programs that access concurrent objects. To that end, a STM system provides the programmer with the concept of a ...
A Lock-Based STM Protocol That Satisfies Opacity and Progressiveness
OPODIS '08: Proceedings of the 12th International Conference on Principles of Distributed Systems

The aim of a software transactional memory (STM) system is to facilitate the delicate problem of low-level concurrency management, i.e. the design of programs made up of processes/threads that concurrently access shared objects. To that end, a STM ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Other conferences

ACMSE '08: Proceedings of the 46th annual ACM Southeast Conference

March 2008

548 pages

ISBN:9781605581057

DOI:10.1145/1593105

Copyright © 2008 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 28 March 2008

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ACM SE08

ACM SE08: ACM Southeast Regional Conference

March 28 - 29, 2008

Alabama, Auburn

Acceptance Rates

Overall Acceptance Rate 502 of 1,023 submissions, 49%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

3
Total Citations
View Citations
564
Total Downloads

Downloads (Last 12 months)7
Downloads (Last 6 weeks)0

Reflects downloads up to 13 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Grechanik MHossain BJohn LSmith CSachs KLladó C(2015)Enhancing Performance And Reliability of Rule Management PlatformsProceedings of the 6th ACM/SPEC International Conference on Performance Engineering10.1145/2668930.2688035(187-198)Online publication date: 28-Jan-2015
https://dl.acm.org/doi/10.1145/2668930.2688035
Hussain TWeippl EIndrawan-Santiago MSteinbauer MKotsis GKhalil I(2013)An Approach to Evaluate the Performance of Web Application SystemsProceedings of International Conference on Information Integration and Web-based Applications & Services10.1145/2539150.2539264(692-696)Online publication date: 2-Dec-2013
https://dl.acm.org/doi/10.1145/2539150.2539264
Khojasteh HAbhari AMcGraw RImsand EChinni M(2010)Mobile mash-up model based on hybrid P2P using Ajax technologyProceedings of the 2010 Spring Simulation Multiconference10.1145/1878537.1878778(1-4)Online publication date: 11-Apr-2010
https://dl.acm.org/doi/10.1145/1878537.1878778

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents