Glossary

CSP (Content Security Policy)

An HTTP security header that defines allowed sources for loading scripts, styles, images, and other resources in a web page. CSP is the primary defense against XSS attacks by preventing execution of unapproved scripts. A poorly configured CSP (unsafe-inline, wildcards) provides little real protection.

Related Pages

xssclickjacking

Other Terms

2FA/MFA (Multi-Factor Authentication)

AES (Advanced Encryption Standard)

AI Agent

ANSSI (French National Cybersecurity Agency)

Back to glossary

Need an external review of your HR SaaS?

Share your product, stack, and client context. We will come back with the right review scope.

Discuss your audit