HTML and CSS Reference
Security is an extremely important aspect of Web application deployment, and is no
less important with WebSocket applications. In this chapter, we examined areas of Web
security that pertain to WebSocket, and how to address them with commonly used
security protocols like TLS, features built into WebSocket like masking, and the origin
header, whose definition was refined specifically for the WebSocket specification. Finally,
we stepped through an example of how you can implement application-level security
through application authentication and authorization to protect resources at the source.
In the next chapter, we'll further explore security as it relates to deployment, as well
as discuss considerations you need to make when you decide to deploy your WebSocket
application to the Web.