[Papers] Cross Site Request Forgery (CSRF) Acadion Security

In the beginning of the 2000s the security community discovered a new type of attack which was first recognized as a confused deputy problem but later came to be known as a Cross Site Request Forgery attack. A CSRF, sometimes called an XSRF, vulnerability exists when a web application fails to properly verify the origin of a request. This paper will look at what CSRF is in theory, in practice and what the possible solutions are. The final chapter will discuss proposals for future solutions to CSRF. (From Acadion Security Whitepaper –¬†Cross Site Request Forgery)

Details

  • Version 1.0
  • By: Acadion Security
  • Date: February 6, 2013

Download PDF:

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.