A posting from Dark Reading in there Application Security section:
As HTML5 continues to experience a groundswell of acceptance within the developer community, organizations must think seriously about how key changes in this latest standard will require them to shift their application security paradigms for Web and mobile apps. Designed to help developers more closely mimic native application through browser-based apps, HTML5 includes a number of useful features that pose as double-edged swords from a security perspective.
“It provides a slew of new programming methods to websites that could present new security challenges and privacy risks to end users and site operators alike,” says Aaron Rhodes, senior security consultant for Neohapsis, a mobile and cloud security services firm.
To read more click here: