Application using a web browser as its Thin Client, vs a separate binary Rich Client.

Discussion between Dave McCusker and Luther Huffman: http://www.treedragon.com/ged/mc/in/lh06Sep00.htm

OWASP list of top Security vulnerabilities of WebApp-s http://www.owasp.org/documentation/topten

Arash Barirani and Jeffrey Blake on tracking down WebApp performance issues.

Some Infrastructure you'll probably need.

see WebAppPatternLanguage

Edited:    |       |    Search Twitter for discussion