Bayt.com

Start networking and exchanging professional insights

Register now or log in to join your professional community.

Follow

How to implment a good CSRF prevention layer on your Web Application ?

CSRF or XSRF ( Cross-site request forgery)

Web Development
user-image
Question added by Hamzeh Abu Zakham , Director of Software Development , bayt.com
Date Posted: 2013/03/26
Upvote (1) Views (8) Followers (0) Answers (1) Report Question
Write an Answer
Register now or log in to answer.
George El Haddad
by George El Haddad , Software Engineer (Freelance) , Scientific Software Consultancy & Training

First off you did not mention the language or platform the web-application is on.
That is a very key aspect to providing you a proper answer that would suite your needs.
There is the Enterprise Security API (ESAPI) by the Open Web Application Security Project (OWASP) that provide an API in various languages that will allow you to validate, verify, authenticate and log operation revolving around security.
With this you can create a layer that should prevent CSRF.
Though remember that web-app security is only as good as the programmer who implements it.
See this link for more info on ESAPI https://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API

Write Your Answer
More Questions Like This

Do you need help in adding the right keywords to your CV? Let our CV writing experts help you.

Get Help