Over a million developers have joined DZone.

Explanation and Demo of the Content Security Policy (CSP) [Video]

DZone's Guide to

Explanation and Demo of the Content Security Policy (CSP) [Video]

In this video, a security researcher shows us how to work with CSP to keep our sites free of vulnerabilities, such as XSS.

· Security Zone ·
Free Resource

Secure and manage your open source software with Flexera.

Scanning a web application for vulnerabilities and ensuring it is secure is certainly a good thing to do. Though there are other things you can leverage to improve the security posture of your web applications, such as Content Security Policy (CSP).

Watch our security researcher Sven Morgenroth deliver a presentation and demo about CSP during episode #536 of Paul's Security Weekly. During the podcast Sven:

  • Explains what CSP is.
  • Explains some CSP directives and how to use them.
  • Shows some of the most common mistakes one can make when configuring CSP.
  • Explains how CSP helps in preventing Cross-site Scripting vulnerabilities on your web applications.

During the podcast, Sven also makes a demo and shows the effect Content Security Policy directives have when used to protect a web application and also highlights some best practices. 

Security vulnerabilities put your data and your customer’s data at risk. Find out how FlexNet Code Insight integrates into your SDLC and makes monitoring open source security a breeze, so you can worry less and build more.  Brought to you in partnership with Flexera.

content security policy ,csp ,security ,cross-site scripting

Published at DZone with permission of

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}