Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Entire Sprint Team: Read up on Content-origin policies #5

Closed
flyingzumwalt opened this issue Feb 7, 2017 · 0 comments
Closed

Entire Sprint Team: Read up on Content-origin policies #5

flyingzumwalt opened this issue Feb 7, 2017 · 0 comments
Milestone
Baseline for Brow...

Comments

@flyingzumwalt
Copy link
Contributor

flyingzumwalt commented Feb 7, 2017
edited
Loading

Content-origin policies are a fundamental aspect of browser functionality. Mozilla is grappling with the challenge of making Content-origin policies work with content-addressed content.

The Single-origin Policy is a central pillar of the browser security model. Its based on the assumption of http, a centralized protocol, meaning that content's identity (and therefore security) is bound to the location its being retrieved from.

Related:

  • CSRF
  • CORS
  • JSON-P
  • web sockets
  • Cross Document messaging
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
Baseline for Browser Integration
Development

No branches or pull requests
1 participant
@flyingzumwalt