Noncespaces: Using Randomization to Defeat Cross-Site Scripting Attacks

Download Now
Provided by: Reed Business Information
Topic: Security
Format: PDF
Cross-Site Scripting (XSS) vulnerabilities are among the most common and serious web application vulnerabilities. It is challenging to eliminate XSS vulnerabilities because it is difficult for web applications to sanitize all user input appropriately. The authors present Noncespaces, a technique that enables web clients to distinguish between trusted and untrusted content to prevent exploitation of XSS vulnerabilities. Using Noncespaces, a web application randomizes the (X)HTML tags and attributes in each document before delivering it to the client.
Download Now

Find By Topic