Isolation Policies #
This section describes proposed defenses against different kinds of cross-site interactions, presented in the form of isolation policies:
- To defend against cross-site requests for common resources (e.g. scripts, images, fetch) with Fetch Metadata, check Resource Isolation Policy.
- To defend against cross-site framing with Fetch Metadata, check Framing Isolation Policy.
- To defend against cross-site navigational requests with Fetch Metadata, check Navigation Isolation Policy.
- To defend against all cross-site interactions with either Fetch Metadata, SameSite cookies, or the Referer header, check Strict Isolation Policy.