Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

CSP Pitfalls and Gotchas

OWASP Foundation via YouTube

Start learning Write review
Great Learning Ad

Foundations of Data Visualization - Self Paced Online

Learn More → Coursera Ad

Google Data Analytics, IBM AI & Meta Marketing — All in One Subscription

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the intricacies of Content Security Policy (CSP) implementation in this 15-minute lightning talk from AppSec EU 2017. Delve into common pitfalls and gotchas associated with CSP, covering topics such as whitelist issues, Same-Origin Policy, and unsafe inline practices. Learn effective strategies to overcome these challenges and gain insights on building a perfect framework for robust web application security. Presented by Ilya Nesterov and managed by the official OWASP Media Project, this concise yet informative session provides valuable knowledge for web developers and security professionals looking to enhance their understanding of CSP best practices.

Syllabus

Introduction
Whitelist Issues
SameOrigin Policy
Unsafe Inline
What to do
Build Perfect Framework
Summary

Taught by

OWASP Foundation

Reviews

Start your review of CSP Pitfalls and Gotchas

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.