HTTP ¶
See also
EFF ¶
See also
ssllabs ¶
See also
Les menaces de sécurité HTTP ¶
- Content Security Policy (CSP, new)
- X-XSS-Protection (Cross-site_scripting)
- HTTP security headers
- HSTS (HTTP Strict-Transport-Security, RFC 6797)
- HPKP (Public Key Pinning Extension for HTTP, RFC7469, 2015)
- X-Frame-Options (contre le click-jacking, RFC 7034, 2013-10)
- X-Content-Type-Options
- Referrer-Policy
- Set-Cookie
- Subresource integrity
- CORS (Cross-origin resource sharing)
- Redirection