busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
X-Frames-Opti<strong>on</strong>s (IE8)<br />
• HTTP header sent <strong>on</strong> resp<strong>on</strong>ses<br />
• Two possible values: DENY and<br />
SAMEORIGIN<br />
• On DENY, will not render in <str<strong>on</strong>g>frame</str<strong>on</strong>g>d<br />
c<strong>on</strong>text.<br />
• On SAMEORIGIN, <strong>on</strong>ly render if top<br />
<str<strong>on</strong>g>frame</str<strong>on</strong>g> is same origin as page giving<br />
directive.