一、目录介绍

Preface/xvii
Chapter 1: Security in the World of Web Applications  1
PART I: ANATOMY OF THE WEB  21
Chapter 2: It Starts with a URL   23
Chapter 3: Hypertext Transfer Protocol   41
Chapter 4: Hypertext Markup Language   69
Chapter 5: Cascading Style Sheets  87
Chapter 6: Browser-Side Scripts  95
Chapter 7: Non-HTML Document Types  117
Chapter 8: Content Rendering with Browser Plug-ins  127
PART II: BROWSER SECURITY FEATURES   139
Chapter 9: Content Isolation Logic   141
Chapter 10: Origin Inheritance  165
Chapter 11: Life Outside Same-Origin Rules  173
Chapter 12: Other Security Boundaries  187
Chapter 13: Content Recognition Mechanisms  197
Chapter 14: Dealing with Rogue Scripts  213
Chapter 15: Extrinsic Site Privileges   225
PART III: A GLIMPSE OF THINGS TO COME   233
Chapter 16: New and Upcoming Security Features   235
Chapter 17: Other Browser Mechanisms of Note   255
Chapter 18: Common Web Vulnerabilities  261
Epilogue   267
Notes   269
Index   283

��