Skip to main content
All Terms Glossary

Cache Poisoning

Share this post on X (Twitter) Visit cside on Instagram Share this post on LinkedIn
Definition

Cache poisoning occurs when malicious data is injected into a browser's cache, causing it to serve compromised content even after the original attack. This can affect both browser and DNS caches, potentially redirecting users to malicious sites or serving altered JavaScript. From a client-side security perspective, implementing proper cache controls, using HTTPS, and validating cached resources help prevent poisoning attacks. Modern security headers like Cache-Control and proper SSL/TLS configuration are crucial defenses.

You might also be looking for:
Clickjacking See definition Client-Side Security See definition Content Security Policy (CSP) See definition
Definition

What is Cache Poisoning?

Cache poisoning occurs when malicious data is injected into a browser's cache, causing it to serve compromised content even after the original attack. This can affect both browser and DNS caches, potentially redirecting users to malicious sites or serving altered JavaScript. From a client-side security perspective, implementing proper cache controls, using HTTPS, and validating cached resources help prevent poisoning attacks. Modern security headers like Cache-Control and proper SSL/TLS configuration are crucial defenses.

Definition

How does Cache Poisoning relate to client-side security?

Cache Poisoning is an important concept in client-side security that helps protect websites and web applications from various threats and vulnerabilities. Cache poisoning occurs when malicious data is injected into a browser's cache, causing it to serve compromised content even after the original attack. This can affect both browser and DNS caches, potentially redirecting users to malicious sites or serving altered JavaScript. From a client-side security perspective, implementing proper cache controls, using HTTPS, and validating cached resources help prevent poisoning attacks. Modern security headers like Cache-Control and proper SSL/TLS configuration are crucial defenses.

Got more questions

Talk to a security expert

We answer client-side security questions every day. Bring yours.

Book a demo
Browse all terms
Book a demo