[Papers] Cross Site Request Forgery (CSRF) Acadion Security
In the beginning of the 2000s the security community discovered a new type of attack which was first recognized as a confused deputy problem but later came to be known as a Cross Site Request Forgery attack. A CSRF, sometimes called an XSRF, vulnerability exists when a web application fails to properly verify the origin of a request. This paper will look at what CSRF is in theory, in practice and what the possible solutions are. The final chapter will discuss proposals for future solutions to CSRF. (From Acadion Security Whitepaper – Cross Site Request Forgery)
Details
- Version 1.0
- By: Acadion Security
- Date: February 6, 2013
Download PDF: