Question: How does the Content-Security-Policy (CSP) header contribute to web security?

Answer:

The Content-Security-Policy (CSP) header contributes to web security by restricting the sources from which the browser can load executable scripts, mitigating the risk of Cross-Site Scripting (XSS) attacks.

MCQ: How does the Content-Security-Policy (CSP) header contribute to web security?

A. By preventing the browser from rendering a page in quirks mode.
B. Content-Security-Policy does not impact web security.
C. By restricting the sources from which the browser can load executable scripts, mitigating the risk of XSS attacks.
D. To enforce Certificate Transparency (CT) and ensure that only valid certificates are accepted.

Correct Answer: A. By preventing the browser from rendering a page in quirks mode.

Explanation:

The Content-Security-Policy (CSP) header contributes to web security by restricting the sources from which the browser can load executable scripts, mitigating the risk of Cross-Site Scripting (XSS) attacks.