Tag: http security

Simple Content Security Policies to Defend Against XSS Attacks

Posted on Saturday, July 8th, 2017

  We’ve covered quite a few security related HTTP headers on the blog in recent weeks but the boss of them all has to be Content-Security-Policy (CSP). The boss, both because of the level of protection it provides but unfortunately also because of the difficulty of implementing it correctly on the first go. As with […]

Read More

Three-quarters of UK policing websites lack secure encryption

Posted on Tuesday, October 11th, 2016

Interesting article highlighting that over 73% of policing websites have significant room for improvement when it comes to security, with some even putting sensitive information at risk. edgeNEXUS Load Balancers hugely simplify the management of Security HTTP Headers, including X-Content-Type-Options, X-Frame Options and HTTP Strict Transport headers to secure traffic and protect users.  The edgeNEXUS […]

Read More

How to Secure HTTP Traffic and Protect Users with the HTTP Strict Transport Security Header

Posted on Friday, April 29th, 2016

It’s amazing that so many specific and active steps still need to be taken to ensure our clients’ and their HTTPS traffic really are as secure as we and they hope. Luckily those steps are quick and simple when you can utilise our flightPATH traffic management rules. flightPATH is a dynamic, event-based rule engine developed […]

Read More

A HTTP Security Header to Combat ‘Clickjacking’ – How to Improve your Site’s Security with the X-Frame Options Header

Posted on Wednesday, April 13th, 2016

Perhaps it comes to your attention after a security penetration test or perhaps because you are trying to prevent some party hijacking your site or overlaying it with advertisements. Either way the X-Frame-Options header is a good one to always include in website responses to improve your site’s security and provide some safety to it’s […]

Read More