Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

What Are Concerns With Web Application Development?

DZone's Guide to

What Are Concerns With Web Application Development?

Different aspects of security are the biggest concerns around the state of web applications today.

· Web Dev Zone
Free Resource

Get deep insight into Node.js applications with real-time metrics, CPU profiling, and heap snapshots with N|Solid from NodeSource. Learn more.

To gather insights on the state of web application development today, we spoke with 12 executives who are familiar with the current state of the industry and asked them, "What are your biggest concerns around the development of web applications today?" Here's what they told us:

Security

  • The explosion of JavaScript is opening companies up to potential security vulnerabilities via all of the nodes for dependencies. Openness can lead to potential problems that you are unable to anticipate.
  • Security is an important feature. We use two-factor authentication. Compliance. Ensuring users have good intentions. Identifying bad actors more quickly and getting them off the system.
  • The risk of insider threats and human mistakes grows. This drives the importance of automation. Repeatability reduces the opportunity for human error and allows you to keep up with the pace of development and release.
  • Less with regard to complexity and testability. How to test apps’ backend and frontend in a challenging environment. There’s still a lot of manual testing around UIs’ Automation as it is still fragile. Still concerned that some apps and sites are not running SSL by default.
  • Open source is no more or less secure than first-party code; however, it does not age well. If a vulnerability is announced it needs to be fixed in a timely manner. If you wait five years, it will cost a lot more to fix and you will have exposed a lot more vulnerabilities. We’re still not there with security. The OWASP Top 10 is still a problem. Developers are not required to be accountable for secure code.
  • Security, stability, and development speed are areas that continuously need improvement. Otherwise capable application developers and organizations can lose significant market share when blindsided by any of these. Technology companies that solve these problems distance themselves from competitors in a way that is impossible to catch. As a result, there are many organizations today that do not realize their future is questionable because of the performance, agility, and precision of their competitors.

Other

  • There is a short-term trend, already burning itself out, for developers to go "to the metal" and work directly with DOM elements and CSS rules instead of working with component frameworks. The fact is, while CSS-as-such is now relatively consistent across browsers, the nasty browser bugs and inconsistencies never had to do with CSS, but with events, auto-sizing, data binding and network behavior, and other areas. There is, if anything, more of a reason to be using component frameworks today than there ever was before. Developers are slowly, slowly realizing this - mostly through costly project overruns and failures.
  • Access to device APIs. It’s always later over the web. JavaScript and web development have seen a lot of changes in the last three years. I see this rate of change accelerating and getting more fragmented. While it fosters innovation, it keeps you on your toes.
  • Shortened development cycles with multiple deployments. The breadth of browsers and devices matrix is getting huge.
  • Complexity.
  • Less of a need for a full-stack developer today with such a diverse set of skills that no one can possibly know with any depth. Leverage frameworks and let developers be free from having to know the details of each layer. A full-stack developer is more likely to miss things than a specialty developer. More reuse of great frameworks. So many JavaScript frameworks are building up we need to slow the rate of new ones.
  • We see too much reliance on technology and not enough on business outcomes. Our most successful clients bring together IT and business leaders to focus on a common goal and continuously improve their web applications until they exceed it.

What are your biggest concerns around web application development?

Here’s who we spoke to:

Node.js application metrics sent directly to any statsd-compliant system. Get N|Solid

Topics:
web application development ,web dev ,web application security ,javascript frameworks

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}