Web Application Security | ||||
| Article | Summary |
CSRF Explained  | For the last few days I’ve really been trying to figure out what CSRF (Cross site request forgeries) are. I know that might seem like a pedantic or academic question but it’s really not. Here’s what I’m really concerned with. Without being able to define it we can’t even start talking about how to defend it. Stopping all cross site calls would break the internet and unfortunately wouldn’t solve a lot of the CSRF attacks out there anyway (since many are really SAME site request forgeries). |
| Web Application Security and Acceleration Overview | www.radarhack.com has put together a great list of resources about Web Application Security. This includes Application Firewalls,Acceleration and optimization,XML firewall |
| Poking new holes with Flash Crossdomain Policy | With the help of the Flash player plugin it is possible for websites to perform cross domain GET and POST requests with simple JavaScript calls. For web developers this gives a whole lot of new possibilities, but from a security point of view it is a very questionable feature. |
| Previous Page 1 2 |
| [ Return | Return To Main Index ] |
  ) Date () Weight (Reset) Popularity ()Articles currently sorted by: Date (New Articles Listed First) |