CurrentĀ Status: Note (NOTE)
CanonicalĀ URI: http://www.w3.org/TR/epr
Abstract: This Note provides a historical reference for a proposed mechanism to mitigate the risk of reflected cross-site scripting (XSS), cross-site script inclusion (XSSI), and cross-site request forgery (CSRF) attacks by demarcating the areas of an application which are intended to be externally referencable. A specified policy is applied on external requests for all non-demarcated resources.





Entry Point Regulation Updates: