Mostrando entradas con la etiqueta Security. Mostrar todas las entradas
Mostrando entradas con la etiqueta Security. Mostrar todas las entradas

viernes, 25 de junio de 2021

Content Security Policy (CSP)

Content-Security-Policy is the name of a HTTP response header that modern browsers use to enhance the security of the document (or web page). The Content-Security-Policy header allows you to restrict how resources such as JavaScript, CSS, or pretty much anything that the browser loads.

Although it is primarily used as a HTTP response header, you can also apply it via a meta tag.


Content Security Policy browser test


CSP Reporting API

Generic reporting framework which allows web developers to associate a set of named reporting endpoints with an origin. Various platform features can use these endpoints to deliver feature-specific reports in a consistent manner.


CSP Evaluator

CSP Evaluator allows developers and security experts to check if a Content Security Policy (CSP) serves as a strong mitigation against cross-site scripting attacks. It assists with the process of reviewing CSP policies, which is usually a manual task, and helps identify subtle CSP bypasses which undermine the value of a policy.

Publicado por en No hay comentarios:
Etiquetas: ,

miércoles, 26 de mayo de 2021

SQL Server - Extensiones y funcionalidades adicionales

Data Quality Services

SQL Server Data Quality Services (DQS) is a knowledge-driven data quality product. DQS enables you to build a knowledge base and use it to perform a variety of critical data quality tasks, including correction, enrichment, standardization, and de-duplication of your data. DQS enables you to perform data cleansing by using cloud-based reference data services provided by reference data providers. DQS also provides you with profiling that is integrated into its data-quality tasks, enabling you to analyze the integrity of your data.


Dynamic Data Masking - Enmascaramiento dinámico de datos (DDM)

Dynamic data masking (DDM) limits sensitive data exposure by masking it to non-privileged users. It can be used to greatly simplify the design and coding of security in your application.

Dynamic Data Masking

Publicado por en No hay comentarios:
Etiquetas: , , ,

miércoles, 17 de junio de 2020

API Security - Vulnerabilities



https://owasp.org/search/?searchString=API

OWASP Enterprise Security API (ESAPI)

API Security Project


Publicado por en No hay comentarios:
Etiquetas: ,
Suscribirse a: Entradas (Atom)