CurrentĀ Status: Note (NOTE)
CanonicalĀ URI:
Abstract: This Note provides a historical reference for a proposed mechanism to mitigate the risk of reflected cross-site scripting (XSS), cross-site script inclusion (XSSI), and cross-site request forgery (CSRF) attacks by demarcating the areas of an application which are intended to be externally referencable. A specified policy is applied on external requests for all non-demarcated resources.

Entry Point Regulation Updates: