Popular Articles
Subscribe to Infosec Events
Infosec Events Feed Stay up to date with all of the latest security news by subscribing to our RSS Feed. Alternatively, you can have updates sent directly to your email address.

Recent Articles

Browser Security Handbook

Published: December 12th, 2008 | Category: Security Vulnerabilities

The Browser Security Handbook is now online for everyone to read.

This document is meant to provide web application developers, browser engineers, and information security researchers with a one-stop reference to key security properties of contemporary web browsers. Insufficient understanding of these often poorly-documented characteristics is a major contributing factor to the prevalence of several classes of security vulnerabilities.

Although all browsers implement roughly the same set of baseline features, there is relatively little standardization – or conformance to standards – when it comes to many of the less apparent implementation details. Furthermore, vendors routinely introduce proprietary tweaks or improvements that may interfere with existing features in non-obvious ways, and seldom provide a detailed discussion of potential problems.

Thanks to Michal Zalewski and the many others that contributed for the great work. It certainly will be a useful resource.

  • Digg
  • del.icio.us
  • Facebook
  • Google Bookmarks
  • Reddit
  • StumbleUpon
  • TailRank
  • Technorati
  • TwitThis

RSS feed | Trackback URI

Comments »

No comments yet.

Name (required)
E-mail (required - never shown publicly)
URI
Your Comment (smaller size | larger size)
You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your comment.

Trackback responses to this post

Sponsors
CanSecWest Applied Security Conference       Bloggers' Rights at EFF
Categories
Popular Tags
Black Hat blackhat Black Hat Europe Black Hat USA Black Hat USA 2008 Black Hat USA 2009 Calendar CanSecWest CanSecWest 2008 DEFCON DEFCON 16 DNS Firefox Hacker Halted Hack in the Box HITB HOPE IEEE information security ISACA ISSA Jeremiah Grossman LEET Microsoft Mozilla Nmap OWASP PWN to OWN RSA Conference RSA Conference 2008 SANS ShmooCon shmoocon 2010 SOUPS SOURCE Boston SummerCon SWAG The Last HOPE ToorCon X UPSEC USENIX VMware WASC WhatWorks WhiteHat Security
Recent Commentators
Recent Visitors
Favorite Links
Infosec Events. Copyright 2010. All Rights Reserved.
Home - Calendar - Communities - Training - Archives - Contact