Provided by: SecurityTube.net
Date Added: Feb 2014
The de facto security policy in web applications is the Same-Origin Policy (SOP). From the early start, it was meant to confine websites within their origin, while still allowing navigation between different sites. In practice however, the origin-bound security model turns out to be too permissive as well as too restrictive.