Pat_72778
Sep 25, 2007Nimbostratus
CRSF Vulnerability
Not sure where the ASM Module Forum is -- but wondering if anyone has tried to prevent Cross Site Request Forgery through iRules or know if F5 is developing a solution for ASM.
There is what looks like a good proxy based solution published at:
http://www.seclab.tuwien.ac.at/papers/noforge.pdf
More on CRSF or XRSF
http://en.wikipedia.org/wiki/Cross-site_request_forgery
Pat