All posts by Damien Jubeau

Load time is out!

Web agencies and their customers, managers and technical teams, are discussing and debating about load time without always understanding each others.
Whereas websites loading speed is an undeniable and strategic matter that every person involved within a web project should consider, relevant and consistent indicators for web performance have to be selected first. You can only improve what you measure and this measurement has to be reliable. Continue reading Load time is out!

Secure your cookies to the next level with SameSite attribute

After reading our last article about how to secure your cookies, you may (should?) already be using Secure and HttpOnly flags. As a reminder, ‘Secure’ allows to prevent a cookie to be sent on a non-secure web page, whereas ‘HttpOnly’ prevents any client-side usage of a given cookie.
It is now time to take your website security to the next level with one more attribute for your cookies! Let’s talk about SameSite instruction, allowing to prevent Cross-Site Request Forgery (CSRF) attacks and Cross-Site Script Inclusion (XSSI). Continue reading Secure your cookies to the next level with SameSite attribute

Website Performance Benchmark: brand-new comparison reports on Dareboost

The first version of our comparison tool has been released about 18 months ago. We’re very glad today to announce a significant upgrade of this feature, now allowing to compare up to 12 web pages at a same time (against only 2 before). Another improvement comes with the charts of groups for monitored pages, giving access to comparison report by clicking any dot on the chart! Continue reading Website Performance Benchmark: brand-new comparison reports on Dareboost

Performance and security of target=_blank links with rel=noopener

About one year ago, we were announcing an update of the quality checkpoints of our website analysis service. This update was including a new best practice related to hypertext links opening in a new window or tab by using target="_blank" attribute.
Joining Google Chrome, the latest Firefox version now supports the rel="noopener" attribute, which was one of our advised solutions. The right time for us to have a look back on this recommendation we have brought not only for better security but also for web performance. Continue reading Performance and security of target=_blank links with rel=noopener

Website Speed: 49 Luxury Brands Tested in China

The Chinese web is a highly coveted market for all brands of luxury goods from around the world. But it is also a difficult sector for investments – with its limited access conditions as well as its famous Great Firewall. How do these brands manage to deal with these technical handicaps? Using its Chinese probes, Dareboost tested the web performance of 49 of these prestigious brands.  Continue reading Website Speed: 49 Luxury Brands Tested in China

Secure your Cookies (Secure and HttpOnly flags)

Cookies are widely used throughout the Web because they allow publishers to store data directly on the user’s Web browser. They’re particularly used to identify the user’s session, allowing the web server to recognize the user as they navigate through the site, and generally contain sensitive data. You have to properly protect them.
Continue reading Secure your Cookies (Secure and HttpOnly flags)

Web Performance and User Journey Monitoring with Dareboost

It’s been months we have been working on it and testing it with a few renowned customers, and there we are now… Proud to announce the release of a brand-new feature on Dareboost: Synthetic User Journey Monitoring! Thanks to this new service, you will be able to analyze and monitor the web performance of a whole user journey. Let’s discover this new option. Continue reading Web Performance and User Journey Monitoring with Dareboost

Why you should avoid using document.write, specifically for scripts injection

Web performance testing tools like Google Page Speed or Dareboost already pointed it: injecting a script by using document.write instruction causes severe issues about websites loading time. Let’s talk about this topic one more time, as the next Chrome update to come won’t allow such scripts injections any longer. What kind of issues may you experience? Which alternatives to find?

Continue reading Why you should avoid using document.write, specifically for scripts injection