Join Kevin Skoglund for an in-depth discussion in this video Protecting cookies, part of Programming Foundations: Web Security.
- In this movie we will talk about Protecting Cookies.…When a user logs into your website,…you're going to then maintain their authenticated access…by using either a cookie or a session file,…which uses a cookie to keep track of…where the session file is located.…The metaphor that I like to use is that…it's like having a hand stamp, if you attend an event.…You give your ticket, they put a stamp on your hand…and after that you can come in and out of the event…and they know that you've given your ticket already…because you have the hand stamp.…It works the same way with the cookie.…
We take the users credentials and we authenticate them…and then we don't authenticate them over and over again…instead we just give them hand stamp…in a cookie or a session…so that we can keep tract of the fact…that they've been authenticated in the past.…Because of the way we do this though…it makes those cookies very valuable,…because they are the thing that maintains our access,…and so they're vulnerable to theft, to session high jacking…
This course is great for developers who want to secure their client's websites, and for anyone else who wants to learn more about web security.
- Why security matters
- What is a hacker?
- How to write a security policy
- Cross-site scripting (XSS)
- Cross-site request forgery (CSRF)
- SQL injection
- Session hijacking and fixation
- Passwords and encryption
- Secure credit card payments
Skill Level Beginner
1. Security Overview
2. General Security Principles
3. Filtering Input, Controlling Output
4. The Most Common Attacks
5. Encryption and User Authentication
6. Other Areas of Concern
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.