Welcome to MSDN Blogs
Sign in
|
Join
|
Help
random dross
Web security and beyond...
This Blog
Email
Syndication
RSS 2.0
Atom 1.0
Search
Go
Tags
ActiveX
Computer Security
Cross-Site Scripting
De-obfuscation
General
Internet Explorer
Kill-Bit
Sidebar Gadgets
Web Application Security
XSS
Archives
September 2008 (1)
August 2008 (2)
July 2008 (2)
May 2008 (1)
March 2008 (1)
February 2008 (1)
December 2007 (1)
September 2007 (1)
August 2007 (2)
July 2007 (1)
June 2007 (1)
December 2006 (1)
November 2006 (1)
October 2006 (2)
September 2006 (1)
June 2005 (2)
Other Blogs
The MSRC Blog
The IE Blog
Stepto's Blog
Michael Howard's Blog
Rob Hensing's Blog
Security Vulnerability Research & Defense
Other Useful Stuff
Fiddler HTTP Debugging Proxy
Security
Anti-Phishing Working Group
The Open Web Application Security Project
SecurityFocus
Internet Storm Center Handler's Diary
Twitter
random dross
July 2008 - Posts
Thursday, July 03, 2008 11:55 PM
IE8 XSS Filter design philosophy in-depth
It's great to see some positive reaction to the potential of our XSS Filter. Now we just need to deliver! In this blog post I’ll try to shed some light on our design philosophy. To understand how we have arrived at our current filtering approach, it is
Posted by
dross
|
3 Comments
Filed under:
Computer Security
,
Internet Explorer
,
Web Application Security
,
Cross-Site Scripting
,
XSS
Wednesday, July 02, 2008 9:29 AM
IE8 goes on the offensive against XSS!
IE has announced the new XSS Filter feature which will debut in IE8 Beta 2! Stay tuned to my blog in the coming weeks for more details on how the filter works, its history, its limitations, and some lessons learned during the development process.
Posted by
dross
|
1 Comments
Filed under:
Computer Security
,
Internet Explorer
,
Web Application Security
,
Cross-Site Scripting
,
XSS
