Google’s “Browser Security Handbook” published
Michal Zalewski at Google has published a “Browser Security Handbook” the goal of which is
to provide web application developers, browser engineers, and information security researchers with a one-stop reference to key security properties of contemporary web browsers. Insufficient understanding of these often poorly-documented characteristics is a major contributing factor to the prevalence of several classes of security vulnerabilities.
If your goal for 2009 is to get your security geek on, then here’s an excellent place to start. Also good for impressing folks at nightclubs with intimate details of “Same-origin policy for XMLHttpRequest” and such forth. Or not.
Great reading, every weekend.
We round up the best writing about the web and send it your way each Friday.