HTTP Security Headers - A Technology History Through Scar Tissue

Explore the evolution and importance of HTTP security headers in this 31-minute conference talk from BSidesSF 2019. Dive into the world of digital security measures that have emerged as responses to internet vulnerabilities. Learn about the major security headers, their best practices, and why they're crucial for modern web security. Gain insights into the content-security-policy header, understanding its complexity and power in enhancing web application security. Discover how empowering developers to tailor CSP headers can lead to more effective and fine-grained security controls compared to traditional security or operations-driven policies.

BSidesSF 2019 - HTTP Security Headers: A Technology History Through Scar Tissue (Benjamin Hering)