Published on

  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide


  1. 1. “HTTP is a „stateless‟ protocol. This means that each visit to a site(or even clicks within a site) is seen by the server as the first visit bythe user. In essence, the server "forgets" everything after eachrequest.”
  2. 2. “Cookies are a very important method for maintaining state on the Web. "State"in this case refers to an applications ability to work interactively with a user,remembering all data since the application started, and differentiating betweenusers and their individual data sets.” “Cookies are simply text files sent by a Web site to your computer to track your movements within its pages. Theyre something like virtual license plates, assigned to your browser so a site can spot you in a sea of millions of visitors. Cookies remember your login and password, the products youve just bought, or your preferred color scheme.”
  3. 3. Lou Montulli, a founding engineer atNetscape Communications, invented thecookie as a way to create a virtualshopping cart, essentially launching e-commerce in 1994.The stateless internets has no memory ofa browser‟s actions. Moving from page topage is like the first time all over again forthe internets. Cookies remember theselections a user has made from page topage, thus allowing for the experience ofa virtual shopping experience.
  4. 4. Lou Montulli went on to be named People Magazine‟s sexiest internet mogulin 1998
  5. 5. “An analogy I like to use is a laundry cleaners shop. You drop something off,and get a ticket. When you return with the ticket, you get your clothes back. Ifyou dont have the ticket, then the laundry man doesnt know which clothes areyours. In fact, he wont be able to tell whether you are there to pick up clothes,or a brand new customer. As such, the ticket is critical to maintaining statebetween you and the laundry man.”
  6. 6. •Only last for the duration of a user‟s visit to a site•Allows data selection to be remembered from page to page•Most common cookie associated with virtual shopping
  7. 7. •Store authentication data: log-in info•Personal preferences like theme andlanguage selections•Preferences remembered when user visitssite later in the future
  8. 8. •Only used when user is using HTTPS•Cookies are encrypted protectingagainst “eavesdropping” or“cookiejacking”
  9. 9. •Flash-based cookies•Used for tracking•Resist being deleted
  10. 10. •Allow web traffic tracking companies to trackunique user information across multiple browserplatforms•Can last for years or decades•If deleted, will come back to life
  11. 11. “So, what would happen if the king of theInternet magically banned cookiestomorrow? Much of the Web would ceaseto exist. Many Web sites would requiremore frequent registration—youd have tolog in every time you visited the New YorkTimes, since the site wouldnt rememberyou. And forget about shopping online.”
  12. 12. Facebook tracks your web acitivity outside of even when you‟re logged out.A cookiejacking vulnerability wasdiscovered in the latest version ofIE. Most cookies don‟t have anyvaluable info, but your Gmail,Twitter, and Facebook cookieshave all log-in info stored. Badnews. Saved any credit card infoto a site you frequently shop at?Vulnerable to hackers!
  13. 13. •Delete cookies from your browsers on the regular •Relegate Facebook to it‟s own browser •Don‟t use IENot all cookies are bad, though. They make ouruser experience (mostly) seamless. We win the Internet!