Close, Tyler J. wrote: > +Robbing the user+ > > For this scenario: > > resource host: acting faithfully > third-party script: acting dishonestly > user: acting honestly > > In this scenario, the third party script seeks to cause > changes to the resource that the resource host will blame on the user. > > The third-party script sends exactly the same HTTP POST > request shown in "Framing the Referer". Or rather, almost exactly the same request. The "recipient" identifier identifies an account belonging to the third-party script's author. So: POST /spendMoney HTTP/1.1 Host: honestBank.com Referer-Root: https://honestBlogger.com Cookie: "user's authentication tokens" Content-Type: application/json { "recipient": "honestBlogger's accomplice account", "amount": "20 bucks" } --Tyler
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Ian Hickson
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Ian Hickson
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Ian Hickson
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Ian Hickson
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Close, Tyler J.
- RE: Accountability in AC4CSR Ian Hickson
- Re: Accountability in AC4CSR John Panzer
- Re: Accountability in AC4CSR Ian Hickson
- Re: Accountability in AC4CSR John Panzer
- Re: Accountability in AC4CSR Ian Hickson
- Re: Accountability in AC4CSR John Panzer
- Re: Accountability in AC4CSR Ian Hickson
- Re: Accountability in AC4CSR John Panzer
- Re: Accountability in AC4CSR Ian Hickson
- Re: Accountability in AC4CSR John Panzer
