^Sid Stamm. Security/CSP/Spec - MozillaWiki. wiki.mozilla.org. 2009-03-11 [2011-06-29]. (原始內容存檔於2019-09-29). Content Security Policy is intended to help web designers or server administrators specify how content interacts on their web sites. It helps mitigate and detect types of attacks such as XSS and data injection.