Towards stateless, client-side driven Cross-Site Request Forgery protection for Web applications Sebastian Lekies, Walter Tighzert, and Martin Johns SAP Research ﬁ Abstract: Cross-site request f - NoScript - Document - PDFSEARCH.IO - Document Search Engine

Back to Results

First Page	Meta Content
	Towards stateless, client-side driven Cross-Site Request Forgery protection for Web applications Sebastian Lekies, Walter Tighzert, and Martin Johns SAP Research ﬁ Abstract: Cross-site request f Add to Reading List Document Date: 2013-10-04 11:44:23 Open Document File Size: 157,84 KB Share Result on Facebook City Plugin / / / Facility JavaScript library / / IndustryTerm Web authentication tracking / protection Web authentication tracking The HTTP protocol / Web application landscape / Web applications / Web side / target Web server / Web Application Security Vulnerabilities / Web application paradigm / vulnerable applications / bank / targeted Web site / Web application / Web browser / vulnerable Web application / Web applications Sebastian Lekies / Web application exposes / Web server / Web technologies / purpose Web sites / online bank account / legacy applications / / Organization U.S. Securities and Exchange Commission / / Person Martin Johns / Sebastian Lekies / Walter Tighzert / / Position straight forward / Major / head / / ProgrammingLanguage Java / PHP / JavaScript / HTML / / Technology PHP / Java / Web technologies / stateless / client-side driven Cross-Site Request Forgery protection Web authentication tracking The HTTP protocol / DHTML / HTTP / DOM / HTML / AJAX / Flash / Web server / / URL www.bank.com / www.attacker.org / //a.net / / SocialTag Web development JavaScript HTTP Ajax Cross-site request forgery HTTP cookie Session NoScript XMLHttpRequest Computing