Secure Programming Lecture 15: Information Flow

The references in the lecture make good reading material.

Taint checking

Information flow

Content Security Policies

The lecture briefly mentioned Content Security Policy, CSP, which a web application can user as headers to specify a security policy, listing trusted sources from which to load images, scripts, etc. Further reading for interest:


Home : Teaching : Courses : Sp : 2019 

Informatics Forum, 10 Crichton Street, Edinburgh, EH8 9AB, Scotland, UK
Tel: +44 131 651 5661, Fax: +44 131 651 1426, E-mail: school-office@inf.ed.ac.uk
Please contact our webadmin with any comments or corrections. Logging and Cookies
Unless explicitly stated otherwise, all material is copyright © The University of Edinburgh