I just read this article on Ajaxian about the new S3 Javascript Bindings. Very cool! They have implemented SHA1 hashes in Javascript! I also am intrigued by the idea of calling/retrieving Javascripts from S3 Service.
I’m scared about the possibilities of storing/retrieving user data from S3. Don’t get me wrong. I think the concept is cool, and if you are talking about storing documents or document related data (say from a word processor) then that’s great! Lot’s of possibilities there.
What concerns me is that many programmers aren’t geniuses. They will do things they shouldn’t like store passwords or some other type of sensitive info without letting the user know what’s going on. The article does somewhat caution about this, so I can’t fault the writer or anyone else. We just need to make sure that we do a good job of educating programmers what not to store on S3… or at least train them to think accordingly. I know back in the day before I got security religion, I would say… this is the easiest place to store it.
Technorati Tags: Ajax