| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282 |
- {
- "title":"'SameSite' cookie attribute",
- "description":"Same-site cookies (n\u00e9e \"First-Party-Only\" (n\u00e9e \"First-Party\")) allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.",
- "spec":"https://tools.ietf.org/html/draft-west-first-party-cookies-06",
- "status":"other",
- "links":[
- {
- "url":"http://www.sjoerdlangkemper.nl/2016/04/14/preventing-csrf-with-samesite-cookie-attribute/",
- "title":"Preventing CSRF with the same-site cookie attribute"
- },
- {
- "url":"https://bugzilla.mozilla.org/show_bug.cgi?id=795346",
- "title":"Mozilla Bug #795346: Add SameSite support for cookies"
- }
- ],
- "bugs":[
-
- ],
- "categories":[
- "Other"
- ],
- "stats":{
- "ie":{
- "5.5":"n",
- "6":"n",
- "7":"n",
- "8":"n",
- "9":"n",
- "10":"n",
- "11":"n"
- },
- "edge":{
- "12":"n",
- "13":"n",
- "14":"n",
- "15":"n"
- },
- "firefox":{
- "2":"n",
- "3":"n",
- "3.5":"n",
- "3.6":"n",
- "4":"n",
- "5":"n",
- "6":"n",
- "7":"n",
- "8":"n",
- "9":"n",
- "10":"n",
- "11":"n",
- "12":"n",
- "13":"n",
- "14":"n",
- "15":"n",
- "16":"n",
- "17":"n",
- "18":"n",
- "19":"n",
- "20":"n",
- "21":"n",
- "22":"n",
- "23":"n",
- "24":"n",
- "25":"n",
- "26":"n",
- "27":"n",
- "28":"n",
- "29":"n",
- "30":"n",
- "31":"n",
- "32":"n",
- "33":"n",
- "34":"n",
- "35":"n",
- "36":"n",
- "37":"n",
- "38":"n",
- "39":"n",
- "40":"n",
- "41":"n",
- "42":"n",
- "43":"n",
- "44":"n",
- "45":"n",
- "46":"n",
- "47":"n",
- "48":"n",
- "49":"n",
- "50":"n",
- "51":"n",
- "52":"n",
- "53":"n"
- },
- "chrome":{
- "4":"n",
- "5":"n",
- "6":"n",
- "7":"n",
- "8":"n",
- "9":"n",
- "10":"n",
- "11":"n",
- "12":"n",
- "13":"n",
- "14":"n",
- "15":"n",
- "16":"n",
- "17":"n",
- "18":"n",
- "19":"n",
- "20":"n",
- "21":"n",
- "22":"n",
- "23":"n",
- "24":"n",
- "25":"n",
- "26":"n",
- "27":"n",
- "28":"n",
- "29":"n",
- "30":"n",
- "31":"n",
- "32":"n",
- "33":"n",
- "34":"n",
- "35":"n",
- "36":"n",
- "37":"n",
- "38":"n",
- "39":"n",
- "40":"n",
- "41":"n",
- "42":"n",
- "43":"n",
- "44":"n",
- "45":"n",
- "46":"n",
- "47":"n",
- "48":"n",
- "49":"n",
- "50":"n",
- "51":"y",
- "52":"y",
- "53":"y",
- "54":"y",
- "55":"y",
- "56":"y",
- "57":"y",
- "58":"y"
- },
- "safari":{
- "3.1":"n",
- "3.2":"n",
- "4":"n",
- "5":"n",
- "5.1":"n",
- "6":"n",
- "6.1":"n",
- "7":"n",
- "7.1":"n",
- "8":"n",
- "9":"n",
- "9.1":"n",
- "10":"n",
- "TP":"n"
- },
- "opera":{
- "9":"n",
- "9.5-9.6":"n",
- "10.0-10.1":"n",
- "10.5":"n",
- "10.6":"n",
- "11":"n",
- "11.1":"n",
- "11.5":"n",
- "11.6":"n",
- "12":"n",
- "12.1":"n",
- "15":"n",
- "16":"n",
- "17":"n",
- "18":"n",
- "19":"n",
- "20":"n",
- "21":"n",
- "22":"n",
- "23":"n",
- "24":"n",
- "25":"n",
- "26":"n",
- "27":"n",
- "28":"n",
- "29":"n",
- "30":"n",
- "31":"n",
- "32":"n",
- "33":"n",
- "34":"n",
- "35":"n",
- "36":"n",
- "37":"n",
- "38":"n",
- "39":"y",
- "40":"y",
- "41":"y",
- "42":"y",
- "43":"y",
- "44":"y"
- },
- "ios_saf":{
- "3.2":"n",
- "4.0-4.1":"n",
- "4.2-4.3":"n",
- "5.0-5.1":"n",
- "6.0-6.1":"n",
- "7.0-7.1":"n",
- "8":"n",
- "8.1-8.4":"n",
- "9.0-9.2":"n",
- "9.3":"n",
- "10.0-10.2":"n"
- },
- "op_mini":{
- "all":"n"
- },
- "android":{
- "2.1":"n",
- "2.2":"n",
- "2.3":"n",
- "3":"n",
- "4":"n",
- "4.1":"n",
- "4.2-4.3":"n",
- "4.4":"n",
- "4.4.3-4.4.4":"n",
- "53":"y"
- },
- "bb":{
- "7":"n",
- "10":"n"
- },
- "op_mob":{
- "10":"n",
- "11":"n",
- "11.1":"n",
- "11.5":"n",
- "12":"n",
- "12.1":"n",
- "37":"n"
- },
- "and_chr":{
- "55":"y"
- },
- "and_ff":{
- "50":"n"
- },
- "ie_mob":{
- "10":"n",
- "11":"n"
- },
- "and_uc":{
- "11":"n"
- },
- "samsung":{
- "4":"n"
- }
- },
- "notes":"This feature is backwards compatible. Browsers not supporting this feature will simply use the cookie as a regular cookie. There is no need to deliver different cookies to clients.",
- "notes_by_num":{
-
- },
- "usage_perc_y":48.92,
- "usage_perc_a":0,
- "ucprefix":false,
- "parent":"",
- "keywords":"security,cookies,cookie,csrf",
- "ie_id":"",
- "chrome_id":"4672634709082112",
- "firefox_id":"",
- "webkit_id":"",
- "shown":true
- }
|
