Opções de segurança

Cabeçalhos HTTP de segurança

X-Frame-Options

"- HTML Living Standard, tópico 7.6 The X-Frame-Options header, WHATWG community - RFC 7034: HTTP Header Field X-Frame-Options - X-Frame-Options, MDN Web Docs

X-Content-Type-Options

X-Content-Type-Options, MDN Web Docs

Content-Security-Policy (CSP)

Content Security Policy Level 3 (De acordo com a CSP3 nós consideramos frame-src como não obsoleta.), W3C Working Draft
Content Security Policy Level 2, W3C Recommendation
Laboratório Mozilla (Content Security Policy / CSP Toolkit), Mozilla
Content-Security-Policy, MDN webdocs

Referrer-Policy

Referrer Policy, W3C Candidate Recommendation, 26 January 2017, W3C
Referrer Policy, Editor’s Draft, W3C
Referrer-Policy, MDN Web Docs

Outras opções de segurança

`Security.txt`

RFC 9116: A File Format to Aid in Security Vulnerability Disclosure
security.txt Fields, IANA
Securitytxt.org
What is security.txt?, Digital Trust Center

Apoiadores

NIC.br - Núcleo de Informação e Coordenação do Ponto BR
CNPJ:05.506.560/0001-36