Sign-in form best practices
Use cross-platform browser features to build sign-in forms that are secure, accessible and easy to use.
Getting started with Trust Tokens
Trust Tokens is a new API to enable a website to convey a limited amount of information from one browsing context to another (for example, across sites) to help combat fraud, without passive tracking.
Protect your resources from web attacks with Fetch Metadata
Prevent CSRF, XSSI, and cross-origin information leaks.
Why you need "cross-origin isolated" for powerful features
Learn why cross-origin isolation is needed to use powerful features such as SharedArrayBuffer, performance.measureUserAgentSpecificMemory() and high resolution timer with better precision.
Making your website "cross-origin isolated" using COOP and COEP
Use COOP and COEP to set up a cross-origin isolated environment and enable powerful features like SharedArrayBuffer, performance.measureUserAgentSpecificMemory() and high resolution timer with better precision.
Digging into the Privacy Sandbox
The Privacy Sandbox is a series of proposals to satisfy third-party use cases without third-party cookies or other tracking mechanisms.
Ensure your website is available and usable for everyone during COVID-19
How to ensure that the core functionality of your website is always available, accessible, secure, usable, discoverable, and fast.
Prevent DOM-based cross-site scripting vulnerabilities with Trusted Types
Reduce the DOM XSS attack surface of your application.
SameSite cookie recipes
Update your site's cookies to prepare for the upcoming changes to the SameSite attribute's behavior.
SameSite cookies explained
Secure your site by learning how to explicitly mark your cross-site cookies.
Cross-Origin Resource Sharing (CORS)
Share cross-origin resources safely
