10장에서 소개하는 여러가지 클라이언트 보안 방법들 정리
- X-Frame-Options
- Content-Security-Policy
- Strict-Transport-Security
- Public-Key-Pins
- Set-Cookie (secure, httpOnly)
- CSRF Token
- 2FA
- GeoIP
- X-XSS-Protection
https://cheatsheetseries.owasp.org/cheatsheets/HTML5_Security_Cheat_Sheet.html
https://owasp.org/www-project-secure-headers/