Page history
11 November 2010
2 October 2009
20 July 2009
→Selection of "null" token
m-96
→Selection of "null" token
+911
→Diversion from CORS Origin header
+551
→Advantage of more than one bit of data
m+1
→Advantage of more than one bit of data
m+679
18 July 2009
17 July 2009
→Design Path
+173
→When Sec-From is served (and when it is "null")
+1,060
→When Sec-From is served (and when it is "null")
-7
→When Sec-From is served (and when it is "null")
+275
→Diversion from CORS Origin header
m+27
14 July 2009
→Changes from Previous Proposal (Origin)
+593
→Sec-From header proposal for CSRF and clickjacking mitigation
m+1,244
→Origin header proposal for CSRF and clickjacking mitigation
m+2
no edit summary
-12
Created page with '= Origin header proposal for CSRF and clickjacking mitigation = <i>The HTTP Request header Sec-From, has changed from "Origin" to avoid conflict with the similarly named header i…'
+4,457