How does masking in WebSockets prevent cache poisoning if the attacker can write their own WebSocket client?
I’ve been reading about WebSockets, and learned that they apply masking of messages using a XOR cipher. This is done in order to prevent attackers from being able to make the data they send using WebSockets look like an HTTP request, becau… Continue reading How does masking in WebSockets prevent cache poisoning if the attacker can write their own WebSocket client?