Re: NSD API security

Le jeudi 03 octobre 2013 à 01:28 +0000, Frederick.Hirsch@nokia.com a
écrit :
> The fundamental flaw is that one device has two purposes  allowing
> flaws from one to affect the other, yet this is also why it is sold
> and valued - the convenience, cost reduction, lower hardware
> footprint, easier management etc are also benefits.

One simple (but of course not 100% effective) solution would be for such
a dual serviced device to expose CORS headers only on the benign
service, and not on the security-sensitive one.

(if a bug in the benign service lets attack the sensitive one, of
course, this won't be of much use)

Dom

Received on Thursday, 3 October 2013 06:50:46 UTC