Is there a generic way to prevent HTTP timing attacks for sensitive requests?
If I have sensitive HTTP routes that could be subject to timing attacks (trying to guess an ID, user, etc.), is there a way without modifying the application code that it could be wrapped with a network tweak, proxy, or some other program … Continue reading Is there a generic way to prevent HTTP timing attacks for sensitive requests?