Anyone who has given a thought about CSP and might have kept is aside as too much work. Give this talk a look, heck if you implemented CSP and wonder what else give this talk some of your time. You might be surprised to learn a lot of tricks around this old yet largely unexplored topic. Lavakumar Kuppan is an authority when it comes to HTML5 Security and his thoughts around this topic add more value to the context.
You can watch this for free @ https://hasgeek.com/rootconf/a-practical-guide-to-detecting-client-side-attacks-with-csp/ Thanks to Hasgeek for organising this.
#security #CSP #infosec #appsec