My own Idea, i think .
Look and contact me at semnanweb [ at ] gmail [ dot ] com.
please refering my site contact me....

What's the ECMAST?
ECMAScript Secure Transform (ECMAST) is the server and client side technique for the transforming web 2 data (forexample XML and JSON) with security without SSL.

What are you need?

The same crypt algorithm in both server language (PHP, ASP ant etc ...) and ECMAScript (JavaScript and etc...) for encryption and decryption data. for example RC6-256
Server Session Generation. That the key of the session store in cookie with the session id name and the value of that
This is the recomended way for get the same key, for cryption algorithm that the server languege and client script have it for accessing the orginal data.

Why this technique?
For the web pages that must have the secure transforming data with the component of web 2 without SSL. for example Ajax.

lock at my own page with example:

if my technique is new what must i do for submit it by my own?