Mitigating Cross-Site Scripting Attacks with a Content Security Policy

Imran Yusof,Al-Sakib Khan Pathan

doi:10.1109/mc.2016.76

Mitigating Cross-Site Scripting Attacks with a Content Security Policy

Imran Yusof, Al-Sakib Khan Pathan

https://doi.org/10.1109/mc.2016.76

Copy DOI

Journal: IEEE Computer	Publication Date: Mar 1, 2016
Citations: 20

Affiliation: International Islamic University Malaysia

#Content Security Policy #Prototype Website + Show 8 more

Abstract
Full-Text PDF
Similar Papers

Abstract

A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack types in four popular browsers.

Full Text