Question: How does the Content-Security-Policy (CSP) header contribute to web application security?

Answer:

Content-Security-Policy (CSP) contributes to web application security by preventing clickjacking attacks and controlling resource loading, specifying which sources are allowed for various types of content.

MCQ: How does the Content-Security-Policy (CSP) header contribute to web application security?

A. By enabling cross-origin resource sharing
B. By preventing clickjacking attacks and controlling resource loading
C. By allowing insecure HTTP connections for certain resources
D. Content-Security-Policy has no impact on web application security

Correct Answer: A. By enabling cross-origin resource sharing

Explanation:

Content-Security-Policy (CSP) contributes to web application security by preventing clickjacking attacks and controlling resource loading, specifying which sources are allowed for various types of content.