1. browse
  2. congress
  3. 2006
  4. event
conference logo

CSRF, the Intranet and You

Causes, Attacks and Countermeasures

Justus Winter and Martin Johns

Playlists: '23c3' videos starting here / audio / related events

A detailed introduction to Cross Site Request Forgery. This talk presents the fundamental cause of this vulnerability class and examples of potential attack consequences. The second half of the talk is devoted to avoiding and countering CSRF: Implementing CSRF proof session handling, transparent retrofitting of legacy applications and methods for client side protection.

Download

Video

Subtitles

Help us to subtitle this talk!

Audio

Download mp3
eng 170 MB

Related

C64-DTV Hacking
Extracting keys from FPGAs, OTP Tokens and Door Locks
HTTP Security & Headers
elektronisches Anwaltspostfach - einfach. digital. kaputt.
A not so smart card
ID Cards in China: Your Worst Nightmare
Secure Network Server Programming on Unix
Finding and Preventing Buffer Overflows
A Hackers Approach To Building Electric Guitars
Body hacking

Embed

Share:

Tags