Surfing the Sea and Drowning in Tabs - An Introduction to Cross Site Request Forgery
Offered By: YouTube
Course Description
Overview
Learn about Cross Site Request Forgery (CSRF) in this 50-minute conference talk from Circle City Con 2015. Explore the fundamentals of CSRF, including its definition, how it occurs, and its relationship to the same-origin policy. Dive into key concepts such as viewstate, headers, MVC, and cookies. Discover defensive strategies like the Encrypted Token Pattern and other tactics to protect against CSRF attacks. Gain insights from real-world examples, including a Twitter case study, and access valuable resources for further learning. Enhance your web security knowledge and learn to safeguard applications from this common vulnerability.
Syllabus
Intro
What is Cross Site Request Forgery
App
How did this happen
Same origin policy
Viewstate
Header
MVC
Cookies
Encrypted Token Pattern
Other Tactics
Resources
Twitter
Example
Related Courses
Learn Admin Fundamentals in Marketing CloudSalesforce via Trailhead Basic Cryptography and Programming with Crypto API
University of Colorado System via Coursera User Authentication & Authorization in Express
Codecademy Introduction to Web Authentication
World Wide Web Consortium (W3C) via edX Escudo Digital: Ciberseguridad para Protección de Datos y Sistemas
Universidad Anáhuac via edX