Windows 10 Browser Gets Improved Security in Build 15002
Microsoft rolled out Windows 10 build 15002 to Fast ring insiders a couple of days ago, and one of the features that’s introduced in anticipation of the public debut in the spring is support for Content Security Policy Level 2 (CSP2).
In just a few words, CSP2 is a method to make Microsoft Edge more secure by implementing a defense-in-depth system against cross site scripting and content injection attacks, with Microsoft now encouraging all developers to update their web apps to support this resource.
The first version of Content Security Policy was already available in Windows 10, but according to Microsoft itself, it made it more difficult for devs to implement it on websites with inline script elements that linked to script sources or which contained scripts directly.
CSP2 is available exclusively for the Fast ring in build 15002 (EdgeHTML 15.15002), and will obviously be included in the stable version of the Creators Update that’s due in April.