troubleshooting Question

Anti-XSS library from Microsoft VERSUS a Content Security Policy (CSP)

Avatar of curiouswebster
curiouswebsterFlag for United States of America asked on
ASP.NETVulnerabilities.NET ProgrammingMicrosoft DevelopmentSecurity
2 Comments1 Solution226 ViewsLast Modified:
How good is the Anti-XSS library from Microsoft?

In the debates between a Content Security Policy vs. the Anti-XSS library from Microsoft, is there a need for both?

It seem the Anti-XSS library from Microsoft will mitigate a variety of potential XSS attacks. But, where is it lacking?

What aspects of CSP are needed when trying to close all the exposures, that the Anti-XSS library from Microsoft does not close?

Thanks
ASKER CERTIFIED SOLUTION
btanExec Consultant
Join our community to see this answer!
Unlock 1 Answer and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros