期刊文献+

浅谈CSRF

Discuss the CSRF
下载PDF
导出
摘要 CSRF表示一系列的网页应用程序的攻击,它是利用内含的程序。这些攻击被称作“沉睡的巨人”,由于网页的脆弱,许多互联网网站都不能保护其免受攻击。在本文中,描述了CSRF的脆弱,介绍了保护网站免受CSRF攻击的方法,希望网页开发者能够留意这些攻击。 Cross-Site Request Forgery (CSRF) denotes a class of attacks on web applications that exploit implicit authentication processes. These attacks have been called the "sleeping giant" of web-based vulnerabilities, because many sites on the Internet fail to protect against them and because they have been largely ignored by the web development and security communities. In this paper, describes three basic CSRF vulnerabilities, and introduce some policies that are able to protect a site from CSRF attacks. We hope that web developers are unaware of this attacks.
作者 周安辉
出处 《内江职业技术学院学报》 2009年第4期26-30,共5页 Journal of Neijiang Vocational & Technical College
关键词 攻击 脆弱 CSRF Attack, vulnerabilities,CSRF
  • 相关文献

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部