Simon Willison’s Weblog

23rd March 2010 - Link Blog

Side-Channel Leaks in Web Applications. Interesting new security research. SSL web connections encrypt the content but an attacker can still see the size of the HTTP requests going back and forward—which can be enough to extract significant pieces of information, especially in applications that make a lot of Ajax requests.

Posted 23rd March 2010 at 4:24 pm

Recent articles

LLM 0.32a0 is a major backwards-compatible refactor - 29th April 2026
Tracking the history of the now-deceased OpenAI Microsoft AGI clause - 27th April 2026
DeepSeek V4 - almost on the frontier, a fraction of the price - 24th April 2026

This is a link post by Simon Willison, posted on 23rd March 2010.

ajax 61 http 101 security 600 sidechannel 3 ssl 9

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe