Security News > 2020 > April > A client-side perspective on web security
Threats to web security are explained in this first of a three-part article series, and client-side security is shown to address a commonly missed class of cyber attack exemplified by Magecart.
Traditional solutions to web security are outlined, including a new approach to web security based on client-side standards such as content security policy and subresource integrity.
Nowhere is this process of introducing and mitigating cyber risk more obvious than in web security - also referred to as web application security.
The web security community has long recognized the need to deploy functional controls to safeguard the server-side vulnerability of web servers delivering content and capability to client browsers.
As one would expect, the taxonomy of web security issues quickly grew in several directions, but early focus was on avoiding denial of service attacks, protecting hosting infrastructure, and ensuring free flow of web content to users.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/-k9e7DkHZRc/