Internet Engineering Task Force (IETF) D. Ross Request for Comments: 7034 Microsoft Category: Informational T. Gondrom ISSN: 2070-1721 Thames Stanley October 2013 HTTP Header Field X-Frame-Options Abstract To improve the protection of web applications against clickjacking, this document describes the X-Frame-Options HTTP header field, which declares a policy, communicated from the server to the cl