Web Browser Concerns Flashcards
What are Cookies?
Text files placed on a users computer to store information about the users browsing habits, credentials, and other data.
Falling out of favor because users don’t like cookies
What are tracking cookies?
A specialized type of cookie that can be shared by more than one website or service.
They are commonly used for legitimate marketing and advertising purposes, but because they contain a history of the user’s actions on multiple sites, they may be exploited or misused to track the user’s behavior.
What are session cookies?
Session cookies enable the website to keep track of your movement from page to page so you don’t get asked for the same information you’ve already given to the site, such as authentication.
Shopping Cart is an example of session cookies
What is Server Side Tracking?
This is the same idea as cookies, but they are tracked on the server rather than on the users computers.
What is a Locally Shared Object? (LSO)
Also known as Flash Cookies
Stored in Windows user profile, used by Adobe Flash Player.
Getting phased out because Flash is phasing out
What is a browser add-on?
Small browser extensions that add functionality to the browser.
Ad-block, Dark Viewer, etc
Most orgs will block add-ons because there is an additional risk of vulnerability from them.
What type of settings will you find in Advanced Security Options?
Browser configurations for SSL/TLS, local storage/cache size, browsing history options, and more.
What is a secure cookie attribute?
The secure attribute is an option that can be set by the application server when sending a new cookie to the user within an HTTP Response.
The purpose of the secure attribute is to prevent cookies from being observed by unauthorized parties due to the transmission of the cookie in clear text.
It prevents man-in-the-middle or “Pathway attacks”
