Introduction to HTML5 Security

Course Description

This course introduces the security model of the web and builds on top of that. The core focus of the course is HTML5, both its weaknesses and its strengths. We’ll talk about how attackers abuse legitimate interaction patterns in the browser and how to use various browser mechanisms for security. At the end, learners will have a good understanding of the security model of the web so they can spot potential security issues and implement appropriate defenses.

Learning Objectives

  • Explain the isolation boundaries enforced by modern browsers.
  • Securely enable limited interactions between isolated contexts.
  • Understand how UI redressing and tabnabbing attacks work and how to defend against them.
  • Implement defenses to neutralize dangerous attributes of HTML5 forms.
  • Understand how client-side storage mechanisms enlarge the attack surface.
  • Illustrate the danger of injection vulnerabilities using payloads other than script injection.


Delivery Format: eLearning

Duration: 1 ¼ Hours

Level: Beginner

Intended Audience:

  • Architects
  • Back-End Developers
  • Front-End Developers

Competencies: Understanding of HTML and JavaScript; knowledge of OWASP Top 10 useful but not necessary


Get more course information

250 / 250

More courses you might like