Mitigating cross-site scripting attacks with a content security Policy

A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack ty...

Full description

Bibliographic Details
Main Authors:	Yusof, Imran, Pathan, Al Sakib Khan
Format:	Article
Language:	English English
Published:	IEEE Computer Society 2016
Subjects:	QA76 Computer software TK Electrical engineering. Electronics Nuclear engineering TK5101 Telecommunication. Including telegraphy, radio, radar, television
Online Access:	http://irep.iium.edu.my/58853/ http://irep.iium.edu.my/58853/ http://irep.iium.edu.my/58853/ http://irep.iium.edu.my/58853/1/58853_Mitigating%20Cross-Site%20Scripting%20Attacks%20_article.pdf http://irep.iium.edu.my/58853/2/58853_Mitigating%20Cross-Site%20Scripting%20Attacks%20_scopus.pdf

Description
Summary:	A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack types in four popular browsers.

Mitigating cross-site scripting attacks with a content security Policy

Similar Items