-
First of all the application must implement all kinds of basic XSRF attacks.
-
Always use unpredictable parameter for JSON objects.
-
As told in previous posts JSON XSRF
attacks are possible because application can send XMLHttpRequest to
retrieve JSON data it can only retrieve data by using GET method, so
its better to implement only POST method as an countermeasure against
JSON XSRF.
First of all the application must implement all kinds of basic XSRF attacks.
Always use unpredictable parameter for JSON objects.
As told in previous posts JSON XSRF
attacks are possible because application can send XMLHttpRequest to
retrieve JSON data it can only retrieve data by using GET method, so
its better to implement only POST method as an countermeasure against
JSON XSRF.
0 Comments:
Post a Comment
Friends Just Comment Here Without Sign-In By Selecting Anonymous Option...Your Comments Are So Valuable For Us...