An extensible approach to browser security

Alex Russell posted some thoughts last year about how he wishes the W3C would architect the next version of the Content Security Policy.

I definitely agree with Alex that designing CSP as a library that uses other browser primitives would increase its long-term utility and make it compose better with other platform features.

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s