Web performance testing tools such as Google Page Speed or Dareboost have been indicating this for some time.: injecting a script by using
document.write has a significant impact on website loading time. Let’s talk about this topic one more time, as the next Chrome update (version 54) won’t allow such scripts injections any longer. What kind of issues may you experience? What are the alternatives?
Continue reading Why you should avoid using document.write, specifically for scripts injection
Now that we have seen how CSP can be useful in preventing injections of content within your web pages, let’s have a look on some technical elements about CSP implementation, and a few ideas about the methodology to adopt. Continue reading How to implement Content Security Policy?
Thanks to Content Security Policy, you can protect your website from numerous vulnerabilities concerning content injection. Let’s see why and how to use that simple but powerful HTTP header, now widely supported by web browsers.
Continue reading Content Security Policy to secure your website (and more)
You may have already heard about Single Points Of Failure (SPOF), generally dealing with network matters. Did you know that SPOF is also an issue at front-end dev stage? Could you imagine your website to be reliant on Twitter or Facebook’s servers?
Continue reading SPOF: what if your website gets down because of third-party content?
Dareboost celebrates its second anniversary ! The perfect opportunity to offer a special gift to all our users, to announce a few informations about our business development and a new arrival in the DareBoost team !
Continue reading DareBoost: already 2 years of web performance analysis
About a year ago, I have published an article about HTTPs usage growth: Chrome, Firefox and Google Search: HTTPS forcing its way. In this article I detailed some major announcements, that would probably result in pushing HTTPs forward.
Ever since, requests using HTTPs reach 25% according to HttpArchive data (compared to 15% in April 2015).
In this post, we’re going to focus on today’s results of the previous announcements, on the last changes, and especially on why you should consider HTTPs as a requirement for your website (not only for security or SEO considerations!)
Continue reading HTTPs is a requirement for your website
It’s not usual on this blog, but today I’m going to write about a proposal that might become real, but that is still at its very early stage.
It is now more than a year since we added a recommendation about Content Security Policy with our website analysis on dareboost.com. It’s a great feature to add more security to your website, particularly to prevent your visitors from the effects of an XSS attack.
Tim Kaldec and Yoav Weiss borrowed the CSP general concept to apply it to web performance topic, proposing a new HTTP header (Content Performance Policy), allowing to declare precisely the compliance level of a given page with some web performance best practices. Then, the user agent would be responsible to ensure the effectiveness of the announced best practices. Continue reading Content Performance Policy: an alternative to Google AMP?
If you’re reading this blog, you probably know that load time matters when it comes to user experience, a lot. And it’s even a major factor determining the success of a website.
Server response time, speedindex or start render, or again fully loaded time, whatever is the metric you want to collect, your measurement method should take into account several major parameters if you want reliable results through time. Continue reading Website Speed Test, Dareboost tips for reliable results
I’d like to suggest a fundamental concept that will allow you to implement a true performance culture for your web projects: the performance budget.
It’s a kind of budget that isn’t expressed in dollars, but in seconds, megabytes or even the number of files served!
Continue reading Why You Should Use a Performance Budget
More and more of you were asking for it, so we did it :)
Comparison Tests are now available!
- Would you like to know how your website is doing compared to a competitor, whether it is a challenger or the leader of your market?
- Would you like to valorize your optimization work by comparing the new version and the old one of your client’s website?
- Would you like to compare the speed of the mobile and desktop versions of your responsive website?
Continue reading Compare the speed and rendering of 2 pages
The hosting is one of the key elements to a successful website. It is not only a parameter that can highly affect your website’s loading time (meaning your business success), but a host is also a partner upon who you should be able to rely on in time of crisis. Continue reading Hosting: a first step towards performance
Some days ago, we mentionned on this blog the various measures which the Performance Timing API provides access.
Today, I offer to you to discover other data required to assess the web performance, more focused on the user’s feeling than on the technical side. Continue reading Measure a web page speed: Start Render, Visually Complete and SpeedIndex