Which header can be used by web applications to instruct the browser to block certain types of attacks by declaring which sources are legitimate?
- Access-Control-Allow-Origin
- Content-Security-Policy
- Cross-Origin Resource Sharing
- Referrer-Policy
The "Content-Security-Policy" header is used to instruct the browser to block certain types of attacks, such as XSS, by specifying which sources are considered legitimate for loading content.
Loading...
Related Quiz
- Which of the following best describes a "zero-day" vulnerability?
- What is the primary purpose of a software patch?
- Under HIPAA, 'covered entities' include health care providers, health plans, and _______.
- Spear phishing and vishing are both techniques used in what kind of cyber attack?
- Regularly updating and patching network devices is a key _______ in network security.