[webappsec] straw man anti-clickjacking proposal from Hill, Brad on 2012-01-03 (public-webappsec@w3.org from January 2012)

From: Hill, Brad <bhill@paypal-inc.com>
Date: Tue, 3 Jan 2012 13:22:43 -0700
To: "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <213E0EC97FE58F469BB618245B3118BB5559647EF8@DEN-MEXMS-001.corp.ebay.com>

I've added a very rough straw man proposal for an anti-clickjacking technique to the wiki:

http://www.w3.org/Security/wiki/Anti-Clickjacking_Protected_Interactive_Elements

Comments, criticisms, and alternate proposals (<== these please!) are welcome and encouraged on this list, or update the wiki and let us know here.

Brad Hill
Sr. MTS, Internet Standards and Governance
PayPal Information Risk Management
cell: 206.245.7844 / skype: hillbrad
email: bhill@paypal-inc.com

Received on Tuesday, 3 January 2012 20:23:21 UTC