</>
ProtocolCodes
English العربية Deutsch Español Français हिन्दी Bahasa Indonesia 日本語 한국어 Português Русский ไทย Türkçe Tiếng Việt 简体中文
Security

Security Headers

A collection of HTTP response headers that harden web application security by instructing browsers how to behave when handling content. Key headers include Content-Security-Policy (XSS mitigation), Strict-Transport-Security (force HTTPS), X-Content-Type-Options (prevent MIME sniffing), X-Frame-Options (clickjacking prevention), and Referrer-Policy (limit referrer leakage). Tools like securityheaders.com and Mozilla Observatory grade a site's header configuration and highlight missing protections.

Related Protocols

HTTP

Mentioned in Guides

Essential HTTP Headers Every Developer Should Know HTTP Fundamentals
Essential HTTP Security Headers Security & Authentication
API Security Checklist: OWASP Top 10 for APIs Security & Authentication

See Also

HSTS (HTTP Strict Transport Security) Security
CSP (Content Security Policy) Security
Referrer-Policy Web Standards
← Back to Glossary