Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Issues with Javascript

Capt. Cautious (992854) writes | more than 5 years ago

Java 2

Capt. Cautious (992854) writes "FOR MANAGEMENT Inasmuch as I was not able to locate a means to contact the staff of Slashdot I am posting this here as it will be important to other professionals. I am a licensed health care doctor. I also have an strong interest in Linux and computing and individual rights.In that I am a Doc, I have patient records on my computer and as such HIPAA has certain protection standards I must follow online. Among those javascript can not be used as it could potentially further expose patient data. Yes a closed intranet such as a hospital or large clinic is exempt so long as client machines or servers with pt. data (PMI) "Personal Medical Information" or any variant that would allow an outside intruder to commit ID theft. One can not access the internet unless 1) all PMI is encrypted (at least 128 moving towards 256bit)2) as of this year all PMI that is not the medical record itself must be similarly protected.E-mail to patients is usually prohibitive as encryption IS and other standards that are required. Not being a programmer and only recently started learning Bash & HTML I can not speak to the efficacy nor security of javascript. Unfortunately many sites use javascript very indiscriminately,(yes I got toasted more than once, and had to reload the laptop.) If I provide my legal name the likelihood of problems is very high as I live and work in an unbelievably nosy University town. Please reconsider the current use of javascript. I would really hate to have to find a new tech oriented home page... In Service & In Health, Captain V. Cautious"

cancel ×

2 comments

No JS Restrictions I'm Aware Of (1)

ScuttleMonkey (55) | more than 5 years ago | (#27907961)

I haven't heard anything about JS restrictions, do you have documentation on this somewhere? When I visit hhs.gov (or google for "javascript site:.gov") the only things I see about javascript is how it should be turned on to best view the pages. In order for us to offer the advanced tools and technology as the web evolves javascript becomes a necessary tool (see http://slashdot.org/faq/UI.shtml#ui700 [slashdot.org] ). If you would really like a stripped down page you can log in, select the preferences icon in the upper right and choose either "small screen" or "low bandwidth" mode, both offer very minimal viewing experiences and most anything can function without javascript with graceful failover, just don't expect the fancy functionality.

JS Security (1)

physburn (1095481) | more than 5 years ago | (#27916633)

JS can't as far as I know access the local harddrive, so it should be safe enough for most purposes. Cross scripting can be a problem with older browsers which had bugs allowing JS from one domain to access another internet address. Most modern browser prevent this. JS should be safe, by now, providing the browsers implementation is up to the mark. Really though for safety you ought to have your patient records on a different computer to the one you use to browse the web and do your other work with.
Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...