Everything You Need to Know About Content Security Policy (CSP)

Written by mozilla | Published 2021/08/03
Tech Story Tags: csp | content-security-policy | security | cyber-security | cybersecurity | internet-security | cyber-threats | good-company

TLDR Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. CSP is designed to be fully backward compatible (except CSP version 2 where there are some inconsistencies in backward compatibility; more details here section 1.1). Browsers that don't support CSP still work with servers that implement it, and vice-versa: browsers simply ignore it. If the site doesn't offer the CSP header, browsers likewise use the standard same-origin policy.via the TL;DR App
no story
Written by mozilla | Mozilla (stylized as moz://a) is a free software community founded in 1998 by members of Netscape.
Published by HackerNoon on 2021/08/03
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy