# Security & Compliance(CSRF)

Cross site request forgery (CSRF), also known as XSRF, Sea Surf or Session Riding, is an attack vector that tricks a web browser into executing an unwanted action in an application to which a user is logged in.

**Prevention**

* Logging off web applications when not in use
    
* Securing usernames and passwords
    
* Not allowing browsers to remember passwords
    
* Avoiding simultaneously browsing while logged into an application
    
* Denying unauthorized actors access to applications.