Tag Archive for '“flash player”'

Adobe building Flash Player for iPhone

Published on March 19, 2008 in Adobe, Apple, Flash and iPhone. Comments

Finally, some concrete news on the Flash Player for iPhone front: according to the Wall Street Journal, Adobe CEO Shantanu Narayen announced in a conference call to investors that Adobe has begun work on a Flash Player that is suitable for the Apple iPhone.

It looks like Adobe is building the "product in the middle" that Steve Jobs is looking for. Let's hope Apple cooperates by adding the Flash Player to Safari on the iPhone.

This is a good move by Adobe. At the very least, they'll be able to say, "look, here's the Flash Player for iPhone, now it's up to Apple whether they include it in Safari or not." If Apple doesn't then it will end up looking bad as it willfully contradicts its own promise to deliver a non-watered down version of the Internet on the iPhone.

Via: ericd via AppleInsider via WSJ.

playerversion.com

Published on February 16, 2008 in Flash. 31 Comments

It should be easier to find out what version of the Flash Player a user is running. I also often feel the need to check the player version myself while developing. So, for a while now I thought it would be cool to have a simple site that told you your Flash Player Version and maybe also offered some helpful links too. Today, when a burst blood vessel in my finger from too much typing stopped me from working on Singularity, I thought I could at least create that site with one hand.

So here it is: playerversion.com.

Blogged from my iPhone (and typed in with one finger!) :)

Update: There was a bug in the initial version that stopped it from working correctly on Windows with IE 6/7. This is now fixed. I don't have IE7 to test with so I'd appreciate it if someone can confirm that it works there too.

As my hand's feeling better, here's a bit more info on the detection process: It uses the latest SWFObject to embed a Flash 8 SWF which communicates the version back to the page via ExternalInterface. If the Flash Player version is less than 8, than the JavaScript detection in SWFObject is used. I also just added a link to Sephiroth's Plugin Switcher extension for Firefox/Win.

Web ‘08 predictions: The rise of RIAs and the 3D web

Published on December 7, 2007 in .net magazine, 3d, APIs, Flash Platform, Rich Internet Applications, Web '08 and iPhone. 16 Comments

Recently, I gave a talk titled Web '07 - Web '08 at the Christmas charity dinner (linking to the Google cache as the original site appears to be down at the moment) organized by Sussex Geek Dinners. It was a lighthearted tour through the highlights of Web '07 and a look ahead to Web '08* with predictions by myself and some of my friends.

In my predictions for 2008, I talked about how we will be seeing more RIAs in 2008 -- both from Adobe and third parties -- how Silverlight is not going to have a widespread impact (although is definitely something to keep an eye on for 2009/10 and the competition is going to give Adobe a welcome push in the right direction), how mobile Flash is going to move away from Flash Lite to full-scale Flash playback on devices and how we're going to see Flash on the iPhone, how sometimes-connected applications and web/desktop hybrid applications are going to gain importance with AIR, Google Gears, etc., and how real-time 3D in Flash is going to change the aesthetics of the web.

If you've been reading my blog for a while, you might remember that last phrase. It's the same thing I uttered back in 2005 before the release of Flash 8. Back then, .Net magazine pasted my prediction on its cover and I was talking about alpha-channel video, not 3D. I think we can agree that alpha channel video in Flash has altered the aesthetics of the web in the intervening period and I am convinced that 2008 is the year that Flash is going to do the same thing with 3D thanks to Papervision3D.

Specifically, the combination of alpha-channel video, bitmap effects and filters, and real-time 3D is going to create a new benchmark in production values for online experiences. We're already seeing trailblazers like Carlos Ulloa, Ralph Hauwert, and John Grden are pushing the boundaries in this area and, in 2008, we are going to see more mainstream adoption of these techniques.

(I just read a somewhat myopic article in 3D World magazine titled "The look of 3D in 2008" that didn't even touch upon web 3D in any of its predictions! Could it be that web 3D is going to blindsight the traditional 3D community?)

To these predictions, I add two new ones that are closer to my heart: Firstly, Flash developers are going to get a lovely toy-box of APIs to work with and, secondly, we're going to witness a conference that's also going to be a technological tour-de-force to very visibly and publicly define how far we've come in Web '08. The latter has me more excited than I've been in a _very_ long time. And that's all I'm going to say about that for the moment.

The web just keeps getting more and more exciting... here's to a most wonderful 2008!

* Just as an aside, can we please drop the version numbers? We know in software that the moment an application gets its version number it's out of date. So why do we want to apply the same paradigm to describing the web? It's far more accurate, imho, to analyze the characteristics that defined the web in a given year. Hence, Web '08, not Web 3.0).

Why is Adobe creating its own web applications? (Hint: It’s not what you think!)

Published on December 5, 2007 in Flash, Flash Platform, Flex and RIA News. 14 Comments

Adobe released several new web applications this year and many more are on the way.

In a relatively short timeframe, Adobe acquired an online word processor, created a cool color tool, released a free document sharing tool and announced online versions of Photoshop and Premiere.

Now you might think that this is simply Adobe's latest attempt to grow the company by entering waters previously traversed by the likes of Google and Yahoo! But I feel that there's more to it. Specifically, there is one important advantage that having popular web applications will give Adobe: a new avenue for increasing the rate of Flash Player penetration.

I realized this today when I used Kuler and it asked me to upgrade to the latest Flash Player. Now I'm sure that Kuler doesn't use H.264 video but it still requires the latest Flash Player. And, I'm pretty sure that we're going to see Buzzword and the other Adobe applications start doing the same. If Buzzword becomes the online equivalent of Microsoft Word, you can be sure that a lot of people are going to upgrade to the latest Flash Player very quickly in order to keep working on their documents. Ditto for Photoshop and Premiere.

This is part of the reason why I predict that Adobe will keep these applications free in an effort to garner the largest user base it can. A user base that it can then transition almost immediately to the latest Flash Player the moment one is released.

Good one, Adobe!

Building trust in Flash-based RIAs: a security feature request

Published on November 11, 2007 in Flash, Flex, Rich Internet Applications and Security. 14 Comments

Writing about secure passwords in Buzzword got me thinking about the state of security and user trust in Flash (and Flex)-based Rich Internet Applications in general. After giving it some thought, I concluded that we have a little more work to do if users are to be expected to have the same sort of trust in Flash-based RIAs as they do for JavaScript and HTML-based applications and web sites.

The key security issue I see with Flash applications, especially those that deal with sensitive information, is that the user has no way of knowing whether or not the application is communicating their sensitive data over a secure connection.

In a traditional web application, on the other hand, serving the application over HTTPS makes the security lock icon display in the browser and thus alert the user that their data is being handled securely. If a traditional web application then tries to make an HTTP call, the user is alerted to this.

The security lock icon tells users that their data will be sent securely to the server.

In the comments to my previous post, for example, I asked whether Buzzword sends my usersame and password over HTTPS and David Colleta replied that it does. Now I trust David, of course, but what mechanism does Joe User have to trust Jane Developer when it comes to how RIAs handle data in general?

The problem I'm describing manifests itself differently based on whether you examine how it affects users or developers:

Users: A false sense of security

A Flash-based RIA is served over HTTPS. The user sees the security lock icon in their browser and thinks that any data they provide will be securely transfered to the server.

Problem: Unfortunately, the security lock only means that the application itself is being securely transmitted. Internally, the application can transfer the user's sensitive data in clear text for the world to see via HTTP and the user would be none the wiser.

Developers: How can I say "this application really is secure?"

A developer creates an application that handles sensitive data and makes sure that every data call in the application is over HTTPS. The application itself, however, is served over HTTP and so the user does not see the security lock icon in her browser and chooses not to trust the application.

Of course, the application can tell the user what it's doing but again, the user would have to trust that the application wasn't lying.

As you can see, the current state of affairs benefits neither the user nor the developer.

From the developer's perspective, there is no way, currently, of communicating to the user that the application transfers data securely short of loading the whole application over HTTPS. And, as far as the user is concerned, an application that is served over HTTPS can still make HTTP calls and compromise the user's data without the user being alerted to this fact.

One possible solution

One possible solution to this is to have Flash applications that are loaded over HTTPS display a dialog box before attempting to do an HTTP call and to give the user the option to cancel the call if they want to.

A similar feature exists in browsers already where a browser will warn you if you are about to leave an HTTPS session using a dialog box that looks like this:

JavaScript alert warning the user that they are about to leave a secure session.

What I'm proposing is a similar dialog to warn users if a SWF that is loaded over HTTPS attempts to make an HTTP call:

A proposed JavaScript alert to warn users that a Flash application served over HTTPS is about to make an unsecure HTTP call

This one enhancement should go a long way in giving developers a way of saying "this application handles your data securely" and help build trust in users.

I feel that this will become more of an issue as more RIAs start handling sensitive data like credit card details and I would love to see some proactive steps taken by Adobe to address it in upcoming versions of the Flash player.

Bad Behavior has blocked 0 access attempts in the last 7 days.