Pluralsight - Introduction to Browser Security Headers
Size: 624MB | Duration: 3h 05m | Video: AVC (.mp4) 1024x576 15fps | Audio: AAC 44.1KHz 2ch
Genre: eLearning | Level: Intermediate | Language: English
Browser security headers provide a means for websites to describe how they should behave when loaded into the client. By specifying expected & allowable behaviors, security headers can thwart a number of otherwise serious attacks against websites.
Security is all about defense in depth: applying layer upon layer of security controls such that any one single failure does not lead to a compromise of the application. One of those layers is the browser itself, which is becoming increasingly intelligent when it comes to implementing defenses. Security headers are a way of telling the browser how a website may behave when it's loaded into the client. They provide numerous defenses against a variety of attacks in ways that have not previously been possible with security controls that ran solely on the server. In this course, we'll walk through a number of essential security headers that provide even greater levels of defense for web applications. We'll look at how they're intended to work, what attacks they protect against, & how you can easily implement them in your website.