跨站点请求防伪（服务器站点）

本文介绍了跨站点请求防伪（服务器站点）的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！ 问题描述

Web开发人员可以使用哪种技术来防止CSRF攻击？什么应该包含在HTML源代码中？当web开发人员构建他们的网页而不是基于代理的解决方案时，我想要包含的解决方案。 我发现最优选的是使用nonce和样本可用PHP编码，但如何在c＃ASP.Net？

What are the possible technique which web developers may use to prevent that CSRF attack? What should be include in the html source code? The solution that i would like is to be included when web developer build their web page and not a proxy based solution. I have found out that most preferable is using nonce and samples are available in php coding but how can it be use in c# ASP.Net?

推荐答案

www.asp/web-api/overview/security/preventing-cross-site- request-forgery-（csrf）-attacks [ ^ ] www.dotnetcurry/ShowArticle.aspx?ID=890 [ ^ ] 反外国钥匙将解决您的问题我认为............ www.asp/web-api/overview/security/preventing-cross-site-request-forgery-(csrf)-attacks[^] www.dotnetcurry/ShowArticle.aspx?ID=890[^] anti foreign key will solve your problem i think............

检查以下链接，您将获得所需的所有详细信息以及如何修补问题。 www.owasp /index.php/Top_10_2013-A8-Cross-Site_Request_Forgery_(CSRF) [ ^ ] Check below link, you will get all the details required and how to patch the issue. www.owasp/index.php/Top_10_2013-A8-Cross-Site_Request_Forgery_(CSRF)[^]