Host and Application Security Lesson 19: How the Web Works.

Slides:



Advertisements
Similar presentations
PowerPoint presentation of first 25 pages of instructional manual Edith Fabiyi Essentials of Internet Access.
Advertisements

PHP syntax basics. Personal Home Page This is a Hypertext processor It works on the server side It demands a Web-server to be installed.
4.01 How Web Pages Work.
HTTP HyperText Transfer Protocol. HTTP Uses TCP as its underlying transport protocol Uses port 80 Stateless protocol (i.e. HTTP Server maintains no information.
Beginning Web Site Creation: Dreamweaver CS4.  WK1 & WK2  File Management  BlackBoard  SWS  Planning, Design, and HTML review  WK3 & WK4  Dreamweaver.
Layer 7- Application Layer
HTTP Hypertext Transfer Protocol. HTTP messages HTTP is the language that web clients and web servers use to talk to each other –HTTP is largely “under.
1 Software Testing and Quality Assurance Lecture 32 – SWE 205 Course Objective: Basics of Programming Languages & Software Construction Techniques.
Definitions, Definitions, Definitions Lead to Understanding.
Topics in this presentation: The Web and how it works Difference between Web pages and web sites Web browsers and Web servers HTML purpose and structure.
WWW and Internet The Internet Creation of the Web Languages for document description Active web pages.
Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.
 What is it ? What is it ?  URI,URN,URL URI,URN,URL  HTTP – methods HTTP – methods  HTTP Request Packets HTTP Request Packets  HTTP Request Headers.
Application Layer. Domain Name System Domain Name System (DNS) Problem – Want to go to but don’t know the IP addresswww.google.com Solution.
Application Layer. Applications A program or group of programs designed for end users. A program or group of programs designed for end users. Software.
Web Design Terms and Concepts Ms. Scales. Q. What is a Server? A. A server is a computer that stores information many people can access. It runs special.
UNDERSTANDING WEB AND WEB PROJECT PLANNING AND DESIGNING AND EFFECTIVE WEBSITE Garni Dadaian.
 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.
Comp2513 Forms and CGI Server Applications Daniel L. Silver, Ph.D.
Chapter 1: Introduction to Web
Chapter 16 The World Wide Web Chapter Goals Compare and contrast the Internet and the World Wide Web Describe general Web processing Describe several.
FTP (File Transfer Protocol) & Telnet
27.1 Chapter 27 WWW and HTTP Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
CP476 Internet Computing Lecture 5 : HTTP, WWW and URL 1 Lecture 5. WWW, HTTP and URL Objective: to review the concepts of WWW to understand how HTTP works.
TCP/IP Protocol Suite 1 Chapter 22 Upon completion you will be able to: World Wide Web: HTTP Understand the components of a browser and a server Understand.
OV Copyright © 1998 Ziff-Davis Education, a division of Ziff-Davis Inc. All rights reserved. The Internet World-wide network of computers connected.
Web Browser Security Prepared By Mohammed EL-Batta Mohammed Soubih Supervised By Eng. Eman alajrami Explain Date 10. may University of Palestine.
Chapter 17 - Deploying Java Applications on the Web1 Chapter 17 Deploying Java Applications on the Web.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 23 How Web Host Servers Work.
20-753: Fundamentals of Web Programming Copyright © 1999, Carnegie Mellon. All Rights Reserved. 1 Lecture 7: HTTP and CGI Fundamentals of Web Programming.
HTML ~ Web Design.
Kingdom of Saudi Arabia Ministry of Higher Education Al-Imam Muhammad Ibn Saud Islamic University College of Computer and Information Sciences Chapter.
1 Welcome to CSC 301 Web Programming Charles Frank.
Application Layer Khondaker Abdullah-Al-Mamun Lecturer, CSE Instructor, CNAP AUST.
How the Web Works Building a Website – Lesson 1. How People Access the Web Browsers People access websites using software called a web browser. To view.
The Problem of State. We will look at… Sometimes web development is just plain weird! Internet / World Wide Web Aspects of their operation The role of.
The Module Road Map Assignment 1 Road Map We will look at… Internet / World Wide Web Aspects of their operation The role of clients and servers ASPX.
Operating Systems Lesson 12. HTTP vs HTML HTML: hypertext markup language ◦ Definitions of tags that are added to Web documents to control their appearance.
Jan 2001C.Watters1 World Wide Web and E-Commerce Client Side Processing.
2: Application Layer 1 Chapter 2: Application layer r 2.1 Principles of network applications  app architectures  app requirements r 2.2 Web and HTTP.
CITA 310 Section 2 HTTP (Selected Topics from Textbook Chapter 6)
Fall 2000C.Watters1 World Wide Web and E-Commerce Clients & Client Side Processing.
Web Server.
Module: Software Engineering of Web Applications Chapter 2: Technologies 1.
Berkeley Sockets The socket primitives for TCP.. PortProtocol Use 21 FTP File transfer 23 Telnet Remote login 25 SMTP 69 TFTP Trivial File Transfer.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.
How FTP works ? & Send you web pages to server Speaker : Frank Liu.
4.01 How Web Pages Work.
Tonga Institute of Higher Education IT 141: Information Systems
Web Concepts Lesson 2 ITBS2203 E-Commerce for IT.
WWW and HTTP King Fahd University of Petroleum & Minerals
Affinity Depending on the application and client requirements of your Network Load Balancing cluster, you can be required to select an Affinity setting.
CS1001 Lecture 8.
Some bits on how it works
Protocols and networks in the TCP/IP model initially.
Unit 2, Lesson 5 Website Development Tools
Unit 2, Lesson 5 Website Development Tools
COMP 101 Introduction.
COMP 101 Introduction.
Tonga Institute of Higher Education IT 141: Information Systems
Web Design & Development
The Client Server Model
Chengyu Sun California State University, Los Angeles
HTTP and Abstraction on the Internet / The Need for DNS
Tonga Institute of Higher Education IT 141: Information Systems
Chengyu Sun California State University, Los Angeles
The Client Server Model
Chengyu Sun California State University, Los Angeles
4.01 How Web Pages Work.
Q/ Compare between HTTP & HTTPS? HTTP HTTPS
Presentation transcript:

Host and Application Security Lesson 19: How the Web Works

Well we have to start somewhere  If we don’t know how something works we can’t possibly know how it doesn’t work

Why is the Web Important?  For an end-user machine, the Web is the largest vulnerability and infection vector  The Web is much more complex than we think it is – it’s far more than HTML

Two Important Standards  Hypertext Markup Language (HTML) Text with layout instructions  Hypertext Transfer Protocol (HTTP) How we transport this stuff around

HTTP  TCP/IP based protocol  Typically uses port 80  Text-based, so can be used with telnet  Two most important functions: GET and POST GET typically asks for content POST typically sends some data from the web browser to the server

GET  Example: GET /pub/WWW/TheProject.html HTTP/1.1 Host: See? Easy! In fact, reading web pages from C++/Perl is trivially easy

POST  Most commonly, from a form: POST /path/script.cgi HTTP/1.0 From: User-Agent: HTTPTool/1.0 Content-Type: application/x-www-form- urlencoded Content-Length: 32 home=xxxxx&favorite+flavor=plane

All easy so far…  First, we had pictures in HTML…  Then we added support for lots of different kinds of content  Also, there’s Javascript, which runs client side in the context of the local browser

Maintaining State  The problem with Web servers and clients is that it is hard to maintain state – think about a shopping card, for example  Why can’t we just use something simple the server already knows, like IP address?  Solution: Cookies

Cookies by type  Session Cookie  Persistent Cookie  Secure Cookie  HTTPOnly  Third-party cookie  “Supercookie”  Zombie cookie

Active Content  Flash  Silverlight  ActiveX  Java

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.