一、目录介绍
Preface/xvii
Chapter 1: Security in the World of Web Applications 1
PART I: ANATOMY OF THE WEB 21
Chapter 2: It Starts with a URL 23
Chapter 3: Hypertext Transfer Protocol 41
Chapter 4: Hypertext Markup Language 69
Chapter 5: Cascading Style Sheets 87
Chapter 6: Browser-Side Scripts 95
Chapter 7: Non-HTML Document Types 117
Chapter 8: Content Rendering with Browser Plug-ins 127
PART II: BROWSER SECURITY FEATURES 139
Chapter 9: Content Isolation Logic 141
Chapter 10: Origin Inheritance 165
Chapter 11: Life Outside Same-Origin Rules 173
Chapter 12: Other Security Boundaries 187
Chapter 13: Content Recognition Mechanisms 197
Chapter 14: Dealing with Rogue Scripts 213
Chapter 15: Extrinsic Site Privileges 225
PART III: A GLIMPSE OF THINGS TO COME 233
Chapter 16: New and Upcoming Security Features 235
Chapter 17: Other Browser Mechanisms of Note 255
Chapter 18: Common Web Vulnerabilities 261
Epilogue 267
Notes 269
Index 283
��