Uniform Messaging Policy, Level One

Tyler Close, Mark Miller

Tyler Close, Mark Miller, Uniform Messaging Policy, Level One, World Wide Web Consortium, Working Draft WD-UMP-20100126, January 2010.

The Uniform Messaging Policy (UMP) enables cross-site messaging that avoids Cross-Site-Request-Forgery and similar attacks that abuse HTTP cookies and other credentials. For example, content from customer.example.org can safely specify requests to resources determined by service.example.com. Rather than restricting information retrieval to a single origin, as the Same Origin Policy almost does, the Uniform Messaging Policy supports origin independent messaging.


Bibliography Navigation: Reference List; Author Index; Title Index; Keyword Index

Generated by sharef2html on 2011-04-15, 02:00:41.