Changes
Jump to:
navigation
,
search
WebAppSec/Secure Coding Guidelines
10 bytes added
,
11:34, 23 September 2011
m
→
Preventing CSRF:
clarified session tying
* Characteristics of a CSRF Token
** Unique per user & per user session
** Tied to
the
a single user
session
** Large random value
** Generated by a cryptographically secure random number generator
← Older edit
Newer edit →
Mgoodwin
Confirm
81
edits
Navigation menu
Personal tools
Log in
Request account
Namespaces
Special page
Variants
Views
More
Search
Navigation
Main page
Product releases
New pages
Recent changes
Recent uploads
Random page
Help
How to Contribute
All-hands meeting
Other meetings
Contribute to Mozilla
Mozilla Reps
Community Portal
MozillaWiki
About
Team
Policies
Report a wiki bug
Around Mozilla
Mozilla Support
Mozilla Developer Network
Planet Mozilla
Mozilla Blog
Research
Tools
Special pages
Printable version
Import an Etherpad