Skip to content

Privacy Design®

[protecting people by good design, solid security, efficient processes and trusted services]

  • Best Practices
  • Guidance
  • DPA actions
  • News
  • Legal News
  • Privacy Risks
  • Incidents
  • Privacy Seals
  • Tools
  • About me
Posted on February 21, 2018 by stefan

HTTP Security Headers Overview

Good blog post with details on the different security headers and how to set them.

  • XSS-Protection
  • Content Security Policy
  • HTTP Strict Transport Security (HSTS)
  • HTTP Public Key Pinning (HPKP)
  • X-Frame-Options
  • X-Content-Type-Options
  • Referrer-Policy
  • Cookie Options

    https://blog.appcanary.com/2017/http-security-headers.html

CategoriesBest Practices

Post navigation

Previous PostPrevious Open WPM (web privacy measurement scanner)
Next PostNext [htbridge] Mobile app scanner (free)

Recent Posts

  • CNIL publishes update to security guide
  • AEPD: Guidelines for processing activities that involve data communication between Public Administrations in the face of the risk of personal data breaches
  • Brazilian DPA Enacts Regulation on the Setting and Application of Administrative Penalties Under the Brazilian General Data Protection Law
  • Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations – Initial public draft of NIST AI 100-2 (2003 edition)
  • Spain: Catalan Data Protection Authority : Privacy by design and privacy by default: A guide for developers

Recent Comments

    Archives

    • April 2023
    • March 2023
    • February 2023
    • January 2023
    • December 2022
    • November 2022
    • September 2022
    • August 2022
    • July 2022
    • June 2022
    • May 2022
    • April 2022
    • March 2022
    • February 2022
    • January 2022
    • December 2021
    • November 2021
    • October 2021
    • September 2021
    • August 2021
    • July 2021
    • June 2021
    • May 2021
    • April 2021
    • March 2021
    • February 2021
    • January 2021
    • December 2020
    • November 2020
    • October 2020
    • September 2020
    • August 2020
    • July 2020
    • June 2020
    • May 2020
    • March 2020
    • December 2019
    • November 2019
    • October 2019
    • July 2019
    • June 2019
    • May 2019
    • February 2019
    • November 2018
    • October 2018
    • September 2018
    • June 2018
    • April 2018
    • March 2018
    • February 2018
    • April 2016

    Categories

    • A29WP
    • ai
    • AI
    • anonymisation
    • artificial intelligence
    • audit
    • Balancing Test
    • Best Practices
    • big data
    • California
    • cloud
    • Code of Conduct
    • COE
    • contract gaps
    • Contract Template
    • cookies
    • cookies (ePR)
    • data breach
    • de-identification
    • de-identification
    • devices
    • DPA actions
    • DPIA helpers
    • DSAR
    • EDPB
    • EDPB-Art60-summaries
    • EDPS
    • ePR
    • Ethics
    • Guidance
    • HIPAA
    • Identification
    • Incidents
    • iot
    • Legal News
    • Legal overview
    • Legal texts
    • missing contractual controls
    • missing transparency
    • mobile app
    • mobile apps
    • News
    • Opinion
    • passwords
    • PET
    • policy gaps
    • policy gaps
    • Presentation
    • privacy notice
    • Privacy Risks
    • Privacy Seals
    • pseudonymisation
    • re-identification
    • Research
    • risk management gaps
    • scanner
    • security testing gaps
    • settlements
    • social media button
    • social media monitoring
    • Solution Development Lifecylce
    • Subject Access Requests
    • TOM
    • Tools
    • tracking
    • Uncategorized
    • unencrypted email
    • unsecured FTP server
    • USA
    • web site
    • Whitepaper

    Meta

    • Log in
    • Entries feed
    • Comments feed
    • WordPress.org
    • Privacy Notice
    • Impressum
    • LinkedIn
    • eMail
    Privacy Notice Proudly powered by WordPress