This HTML5 document contains 162 embedded RDF statements represented using HTML+Microdata notation.

The embedded RDF content will be recognized by any processor of HTML5 Microdata.

Namespace Prefixes

PrefixIRI
n8http://dbpedia.org/resource/Template:
n22https://report-uri.io/home/
n17http://en.wikipedia.org/wiki/
voidhttp://rdfs.org/ns/void#
n16http://www.w3.org/TR/CSP/
dbpediahttp://dbpedia.org/resource/
schemahttp://schema.org/
n18https://
n14http://commons.wikimedia.org/wiki/Special:FilePath/
n13http://fr.dbpedia.org/resource/
dctermshttp://purl.org/dc/terms/
rdfshttp://www.w3.org/2000/01/rdf-schema#
rdfhttp://www.w3.org/1999/02/22-rdf-syntax-ns#
n21https://cspvalidator.org/
n19http://dbpedia.org/resource/File:
dbpprophttp://dbpedia.org/property/
n32http://demo.openlinksw.com/sparql/
xsdhhttp://www.w3.org/2001/XMLSchema#
n24http://demo.openlinksw.com/about/id/entity/http/dbpedia.org/resource/
dbpedia-owlhttp://dbpedia.org/ontology/
n20https://www.htbridge.com/
categoryhttp://dbpedia.org/resource/Category:
n36http://de.dbpedia.org/resource/
yagohttp://dbpedia.org/class/yago/
n35http://www.wikidata.org/entity/
n28https://web.archive.org/web/20160610085705/https:/oxdef.info/csp-tester/
n12http://yago-knowledge.org/resource/
n30https://global.dbpedia.org/id/
provhttp://www.w3.org/ns/prov#
foafhttp://xmlns.com/foaf/0.1/
n34http://dbpedia.org/resource/Content_Security_Policy#
n27https://developer.mozilla.org/en-US/docs/Web/HTTP/
n38http://www.gnudeveloper.com/cyber_security/
n29http://zh.dbpedia.org/resource/
wdrshttp://www.w3.org/2007/05/powder-s#
n15https://csper.io/
n37https://embedthis.com/blog/posts/csp-survey/
fbasehttp://rdf.freebase.com/ns/
owlhttp://www.w3.org/2002/07/owl#

Statements

Subject Item
dbpedia:Content_Security_Policy
rdf:type
yago:Act100030358 schema:CreativeWork yago:Standard107260623 yago:YagoPermanentlyLocatedEntity yago:Measure100033615 yago:Heading106343971 yago:Event100029378 yago:Line107012534 yago:SystemOfMeasurement113577171 yago:Abstraction100002137 yago:Communication100033020 yago:Writing106362953 yago:WrittenCommunication106349220 yago:Program106568978 yago:Feat100036762 yago:Action100037396 yago:Application106570110 yago:Accomplishment100035189 yago:WikicatWebSecurityExploits yago:WikicatHypertextTransferProtocolHeaders yago:WikicatWebApplications yago:PsychologicalFeature100023100 yago:WikicatComputerSecurityExploits yago:WikicatComputerSecurityStandards yago:Matter106365467 yago:Text106387980 yago:Software106566077 yago:Code106355894 yago:CodingSystem106353757 yago:Writing106359877
rdfs:label
内容安全策略 Content Security Policy Content Security Policy Content Security Policy
rdfs:comment
Content Security Policy (CSP) ist ein Sicherheitskonzept, um Cross-Site-Scripting und andere Angriffe durch Einschleusen von Daten in Webseiten zu verhindern. Es handelt sich um einen W3C-Empfehlungskandidaten zur Sicherheit von Webanwendungen. CSP wurde ursprünglich von der Mozilla Foundation entworfen und in Firefox 4.0 erstmals experimentell unterstützt. Content Security Policy (abrégé CSP) est un mécanisme de sécurité standardisé permettant de restreindre l'origine du contenu (tel qu'un script Javascript, une feuille de style etc.) dans une page web à certains sites autorisés. Il permet notamment de mieux se prémunir contre des attaques d'injection de code comme les attaques par cross-site scripting (abrégé XSS) ou par détournement de clic. Ces attaques se reposant essentiellement sur l'exécution de code malveillant sur un site où l'utilisateur se sent en confiance. La version 3 de ce mécanisme est Candidate Recommendation du W3C. Content Security Policy (CSP) is a computer security standard introduced to prevent cross-site scripting (XSS), clickjacking and other code injection attacks resulting from execution of malicious content in the trusted web page context. It is a Candidate Recommendation of the W3C working group on Web Application Security, widely supported by modern web browsers. CSP provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website—covered types are JavaScript, CSS, HTML frames, web workers, fonts, images, embeddable objects such as Java applets, ActiveX, audio and video files, and other HTML5 features. 内容安全策略(英語:Content Security Policy,简称CSP)是一种计算机安全标准,旨在防御跨站脚本、点击劫持等代码注入攻击,阻止恶意内容在受信网页环境中执行。这一标准是W3C网络应用安全工作组的候选推荐标准,被现代网页浏览器广泛支持。
dbpprop:group
lower-alpha
owl:sameAs
n12:Content_Security_Policy n13:Content_Security_Policy n29:内容安全策略 n30:BT5Q fbase:m.0hzn_0s n34:this n35:Q1128636 n36:Content_Security_Policy dbpedia:Content_Security_Policy
foaf:topic
dbpedia:Web_skimming dbpedia:HTTP_referer dbpedia:MontageJS dbpedia:Troy_Hunt dbpedia:Same-origin_policy dbpedia:Computer_security dbpedia:Clickjacking n17:Content_Security_Policy dbpedia:NoScript dbpedia:Content_security dbpedia:CSP dbpedia:Cross-site_scripting dbpedia:Internet_privacy dbpedia:JavaScript dbpedia:Bookmarklet dbpedia:Browser_engine dbpedia:HTTP_Strict_Transport_Security dbpedia:List_of_HTTP_header_fields dbpedia:Cross-origin_resource_sharing dbpedia:Adblock_Plus
foaf:depiction
n14:ContentSecurityPolicy3_diagram.png
wdrs:describedby
n24:CSS n24:Web_browser n24:Hypertext_Transfer_Protocol n24:Web_server n24:World_Wide_Web_Consortium
dcterms:subject
category:Web_security_exploits category:Computer_security_standards category:Hacking_(computer_security) category:Hypertext_Transfer_Protocol_headers category:Web_applications
foaf:isPrimaryTopicOf
n17:Content_Security_Policy
schema:url
dbpedia:Content_Security_Policy
schema:mainEntity
n24:Content_Security_Policy
void:sparqlEndpoint
n32:
dbpedia-owl:abstract
Content Security Policy (abrégé CSP) est un mécanisme de sécurité standardisé permettant de restreindre l'origine du contenu (tel qu'un script Javascript, une feuille de style etc.) dans une page web à certains sites autorisés. Il permet notamment de mieux se prémunir contre des attaques d'injection de code comme les attaques par cross-site scripting (abrégé XSS) ou par détournement de clic. Ces attaques se reposant essentiellement sur l'exécution de code malveillant sur un site où l'utilisateur se sent en confiance. La plupart des navigateurs modernes supportent ce mécanisme dans sa première version. Ceux ne supportant pas cette spécification ignorent simplement l'en-tête, cela est donc transparent pour le visiteur. La version 3 de ce mécanisme est Candidate Recommendation du W3C. Techniquement, le site internet envoie la liste des sites autorisés (sous forme de liste de noms de domaine) via l'en-tête HTTP Content-Security-Policy. Content Security Policy (CSP) ist ein Sicherheitskonzept, um Cross-Site-Scripting und andere Angriffe durch Einschleusen von Daten in Webseiten zu verhindern. Es handelt sich um einen W3C-Empfehlungskandidaten zur Sicherheit von Webanwendungen. CSP wurde ursprünglich von der Mozilla Foundation entworfen und in Firefox 4.0 erstmals experimentell unterstützt. Content Security Policy (CSP) is a computer security standard introduced to prevent cross-site scripting (XSS), clickjacking and other code injection attacks resulting from execution of malicious content in the trusted web page context. It is a Candidate Recommendation of the W3C working group on Web Application Security, widely supported by modern web browsers. CSP provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website—covered types are JavaScript, CSS, HTML frames, web workers, fonts, images, embeddable objects such as Java applets, ActiveX, audio and video files, and other HTML5 features. 内容安全策略(英語:Content Security Policy,简称CSP)是一种计算机安全标准,旨在防御跨站脚本、点击劫持等代码注入攻击,阻止恶意内容在受信网页环境中执行。这一标准是W3C网络应用安全工作组的候选推荐标准,被现代网页浏览器广泛支持。
dbpedia-owl:thumbnail
n14:ContentSecurityPolicy3_diagram.png?width=300
dbpedia-owl:wikiPageExternalLink
n15:evaluator n16: n18:csper.io n20:websec n21: n22:generate n27:CSP n28: n18:report-uri.io n37: n38:secure_coding_guidelines_for_content_security_policy.html
dbpedia-owl:wikiPageID
34231217
dbpedia-owl:wikiPageLength
18217
dbpedia-owl:wikiPageRevisionID
985696653
dbpedia-owl:wikiPageWikiLink
dbpedia:API category:Web_applications category:Computer_security_standards category:Hacking_(computer_security) dbpedia:Content_delivery_network dbpedia:GitHub dbpedia:Load_balancing_(computing) dbpedia:MDN_Web_Docs dbpedia:Internet_Explorer_11 dbpedia:HTTP_Switchboard dbpedia:Internet_Explorer_10 dbpedia:HTTP_Public_Key_Pinning dbpedia:HTTP_Strict_Transport_Security dbpedia:Frame_(World_Wide_Web) dbpedia:Gecko_(software) dbpedia:Document_Object_Model n19:ContentSecurityPolicy3_diagram.png dbpedia:Django_(web_framework) dbpedia:Code_injection dbpedia:AngularJS dbpedia:World_Wide_Web_Consortium dbpedia:Cox_Communications dbpedia:Web_typography dbpedia:Web_worker dbpedia:WebKit dbpedia:CSS dbpedia:Web_server dbpedia:Trusted_computing_base dbpedia:Web_page dbpedia:Subresource_Integrity dbpedia:Multitier_architecture dbpedia:Java_applet dbpedia:Ruby_on_Rails dbpedia:Meta_element dbpedia:NoScript dbpedia:JavaScript dbpedia:HTTP_referer dbpedia:Computer_security dbpedia:HTML5 dbpedia:Web_browser dbpedia:Google_Chrome dbpedia:ActiveX category:Web_security_exploits dbpedia:Clickjacking dbpedia:HTTPS dbpedia:Cross-site_scripting dbpedia:Opera_(web_browser) dbpedia:Microsoft_Edge dbpedia:Safari_(web_browser) dbpedia:Firefox_4 dbpedia:Hypertext_Transfer_Protocol dbpedia:JSON dbpedia:Firefox dbpedia:Bookmarklet category:Hypertext_Transfer_Protocol_headers
prov:wasDerivedFrom
n17:Content_Security_Policy?oldid=985696653&ns=0
dbpprop:wikiPageUsesTemplate
n8:Reflist n8:As_of n8:Efn n8:Short_description