At the server side, the protocol sets up a maximum trying number to prevent the brute-force attack, and a look-ahead parameter to realize counter resynchronization.

该协议通过在服务器端设置最大认证尝试次数来防止蛮力攻击，并设置前顾参数来实现计数器重同步。

youdao

Also, client-side JavaScript encryption has its limitations since it would still be susceptible to a server-side code poisoning attack executed either through a man-in-the-middle attack or the service provider acting maliciously or subject to jurisdictional court order.

FORBES: Cryptocat Increases Security In Move Away From JavaScript Web Delivery