Content Security Policy - The end of Cross Site Scripting?


Comments are closed.

Timo Bakx at 11:46 on 26 Jun 2015

Interesting talk and useful information. I would have loved a bit more practical uses or best practises for different platforms (corporate websites to user-driven applications) instead of just information about SCP and the differences between 1.0 and 2.0.

Good talk with excellent content. The speaker clearly knew the subject well but delivery could maybe have been a bit more enthusiastic.

The content was great, but perhaps some more usecases and implementations would have been nice.

Content was fine and the topic interesting (it improved my knowledge on the topic) but delivery failed IMHO and made the talk a bit languid.

This was a good, concise intro to CSP, but was a little limited in scope and seemed to fizzle out at the end - not as good as his webstack talk.

I really enjoyed this talk, lots of great info & exploration of the edge cases.

A really interesting topic that i never properly looked into. After the talk i now have a clear idea what CSP is about and how to go about using it when i need to. Exactly what i expect from a talk at a conference: Explaining the why and the context, not just reading the specification.