AJAX has the same security concerns as any web page, since AJAX is not a programming language nor a transport protocol, it is only a set of technologies working together to perform different actions.
These are some tips to consider when using AJAX:
- Use HTTPS when possible
- You could encrypt content and decrypt it when received
- Perform some kind of authentication and authorization for your request/responses