Code, compile, deploy and maintain the most secure Web applications with Mykonos


Enterprise Web applications can accelerate your business by providing a rich, interactive connection point to employees, customers, partners, and shareholders.

At the same time, Web applications massively increase your attack surface, leaving you potentially vulnerable to hackers, PCI compliance risk, and other threats. As Web applications become more powerful and interactive, they download more code and logic to the browser’s computer, and the security exposure widens. How do you get all the advantages of Web applications, while ensuring that you are not exposed to a data breach that could endanger your business?

Mykonos provides a solution that combines rich Web application development with enterprise-class security. Mykonos is a dynamic framework that includes a full range of critical capabilities for coding, compiling, deploying, and maintaining the most secure Web applications, including:

  • The rapid application development features of a best-in-class AJAX framework
  • Powerful and easy-to-implement scaffolding for end-to-end application security
  • A Web-based management console for deploying, configuring, and updating applications
  • A managed update service that provides security and framework patches as new vulnerabilities and threats are identified

Mykonos combines code-level security, secure application management, and rapid application development to help application teams deliver on time without endangering business data.

Code-level Security

Encryption

Mykonos provides 128-bit AES encryption as an alternative to SSL. Developers can apply AES encryption to some or all requests and responses without being constrained by cross domain scripting restrictions or data size limits.

Token-based Session Management

Mykonos uses an advanced session management protocol that prevents session highjacking and man-in-the-middle attacks.

Input Validation

Mykonos provides a robust framework for validating and cleansing all user input to ensure that malicious code can't be executed on the server.

XSS Filtering

All Mykonos components filter data before rendering it to screen to prevent cross-site scripting attacks.

Web-based SSO

Mykonos supports single sign-on integration with SAML v2-based identity providers such as Sun OpenSSO.

Granular Access Control

Developers can integrate Mykonos applications with existing Web access management solutions such as CA SiteMinder. Mykonos includes a set of APIs for querying user, group, and role-based permissions, and applying them to whole applications, specific menu items, and components.

Logging

Mykonos provides an application logging service that includes client-side activity that occurs between page refreshes. The service logs general activity, as well as specific security events.

Obfuscation

Mykonos optionally obfuscates all client-side application code at compile time.

Secure Application Management

Mykonos Management Console

The Mykonos Management Console provides a Web-based interface for deploying, configuring, and updating application code. Administrators can automatically or selectively apply updates across application servers and server groups, while managing versions and dependencies.

Mykonos Managed Updates

Mykonos Managed Updates is a managed service that provides ongoing updates to the Mykonos framework as new vulnerabilities and threats are identified. Updates become available through the console, along with full impact and benefits assessment. They’re based on the latest research from security groups such as OWASP, as well as our own.

Faster Development

JavaScript and XML APIs

Mykonos wraps the complexity of AJAX programming - XHR, events, DOM manipulation- in a set of higher level objects and methods that can be declared in simple, nested XML.

Interactive Designer

The browser-based Interactive Designer lets developers and advanced business users build interfaces quickly by dragging and dropping from a library of application components.

Component Library

The browser-based Interactive Designer lets developers and advanced business users build interfaces quickly by dragging and dropping from a library of application components.

Powerful Compiler

A powerfully configurable application compiler assembles services, extensions, skins, and languages, optimizes for performance, and deploys to multiple development and production environments.

Cross Browser Support

Compiled Mykonos applications render perfectly across Web browsers without any additional work or customization from the developer.

Data Management

Mykonos provides a comprehensive framework for modeling, filtering, and manipulating application data. The framework includes support for progressively loading and displaying large data sets without locking the application interface.

Skins

You can instantly re-skin Mykonos applications by passing them a skin name as a query parameter.

Languages

Mykonos applications detect your Web browser's language setting and automatically switch if a translation is available.

Specifications

Browsers

FireFox 2+, Internet Explorer 6+, Opera 9+ , Safari 3.1+

Operating Systems

Windows XP/Vista/Server 2003, Mac OS X 10.5

Server Software

  • Java SE Development Kit 6
  • Apache Ant 1.7
  • Apache 2.2
  • JBoss (4.2.2 GA or higher)