Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security of Cookies In A Public Computer Lab Setting Russell Fech November 30, 2000.

Published byBritney Agatha Curtis Modified over 9 years ago

Similar presentations

Presentation on theme: "Security of Cookies In A Public Computer Lab Setting Russell Fech November 30, 2000."— Presentation transcript:

1 Security of Cookies In A Public Computer Lab Setting Russell Fech November 30, 2000

2 Outline Introduction of Cookies Problem Statement Motivation/Importance Objective Research Plan Assumptions Conclusion

3 What are cookies? “Cookies are a general mechanism which server side connections can use to both store and retrieve information on the client side of the connection.” - Netscape Also known as “Magic Cookies” Cookies can only be read by the website that issued them

4 Types of cookies Persistent –Stored on hard drive for the long time duration Non-persistent –Stored only for the current session of the web browser

5 Where are the cookies? Cookies exist on both major web browsers –Netscape stores all cookies in the cookies.txt file in a Netscape directory –Internet Explorer stores individual cookies as text files in a cookies directory

6 Why use cookies? Used to keep track of the client session state –Allows the “Full Web Experience” Rotating banners Electronic shopping carts Password saving Data mining Other uses

7 Why use cookies? Web browsers do not keep continuous connections to the web sites –Cookies send the information to reestablish connections Web sites keep information about users to customize the “Full Web Experience”

8 Problem Statement With the emergence of cookies, many users are unknowingly releasing data about themselves Win95/98 does not provide security to protect users’ cookies Cookies are not designed to be used in a multi-user environment

9 Problem Statement There are methods to eliminate/disallow the use of cookies, but this blocks the “Full Web Experience”

10 Motivation/Importance With the controversy concerning the safety of cookies, it is in the best interest of the administrator to ensure the security of user information being transmitted to web sites

11 Motivation/Importance Protect the user from cookie crime Protect the subsequent users from getting unwanted advertisement If cookie theft occurs, the administration may be held accountable, however, if the cookies are cleared off, there will be no such threat

12 Objective Evaluate the use of cookies in public lab settings Develop a hands-off approach to protect users against the cookies threat by providing a transparent layer of protection Provide formidable arguments why users need protection from cookies

13 Research Plan Review current methods that attempt to solve the cookie security problems Test these methods in a lab setting and review their performance Improve on these methods

14 Methods and Problems Disable cookies completely –Provides high security because no cookies are formed –Takes away from the “Full Web Experience” Clear cookies at startup/shutdown –Safer than no protection, but requires a user to do something

15 Methods and Problems Intercept the web browser and clean after exiting –High security, cleans up cookies when the user shuts down the web browser –Mischievous user may “disable” the program in some fashion –Program may crash

16 Assumptions Use of Win 95/98 –Win95/98 does not provide any security for files or folders –Most other operating systems protect users because they require users to log into an account in which their data is saved in a secured area

17 Resources and Special Needs Public computer lab –Computers with Win95/98 Various cookie security methods –Disabling cookies –Batch file deletion of cookies –User deleting cookies themselves –Cookie Crunching Software –Most are free and easily obtainable over the internet

18 Conclusion With the threat of mischievous users and the possible misuse of cookies, it is up to the administration to protect users from as many threats as possible. Cookie security continues to be under major dispute. If cookies are cleared from computers in a lab setting the administration is no longer prone to receiving any future threat to cookies.

19 Questions?

Download ppt "Security of Cookies In A Public Computer Lab Setting Russell Fech November 30, 2000."

Similar presentations

Unit 1 Living in the Digital WorldChapter 1 Lets Communicate Internet Safety.

Unit 1 Living in the Digital WorldChapter 1 Lets Communicate Internet Safety.
4.01 How Web Pages Work.

4.01 How Web Pages Work.
Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,

Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,
Introducing K12Planet.com What is K12Planet.com? Who can access it? Is it secure? What do I need to use it? Can I control the information I see?

Introducing K12Planet.com What is K12Planet.com? Who can access it? Is it secure? What do I need to use it? Can I control the information I see?
Email Basics. 2 Class Outline Part 1 - Introduction –Explaining email –Parts of an email address –Types of email services –Acquiring an email account.

Basics. 2 Class Outline Part 1 - Introduction –Explaining –Parts of an address –Types of services –Acquiring an account.
CC3.12 Lecture 12 Erdal KOSE Based of Prof. Ziegler Lectures.

CC3.12 Lecture 12 Erdal KOSE Based of Prof. Ziegler Lectures.
6/10/2015Cookies1 What are Cookies? 6/10/2015Cookies2 How did they do that?

6/10/2015Cookies1 What are Cookies? 6/10/2015Cookies2 How did they do that?
Design Aspects. User Type the URL address on the cell phone or web browser Not required to login.

Design Aspects. User Type the URL address on the cell phone or web browser Not required to login.
Chapter 10 Managing State Information PHP Programming with MySQL.

Chapter 10 Managing State Information PHP Programming with MySQL.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Topics in this presentation: The Web and how it works Difference between Web pages and web sites Web browsers and Web servers HTML purpose and structure.

Topics in this presentation: The Web and how it works Difference between Web pages and web sites Web browsers and Web servers HTML purpose and structure.
Chapter 10 Maintaining State Information Using Cookies.

Chapter 10 Maintaining State Information Using Cookies.
Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.

Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.
Web Browsers It is an application software that is used to display and interact with text, images and other information located on web pages at web sites.

Web Browsers It is an application software that is used to display and interact with text, images and other information located on web pages at web sites.
11 CONFIGURE INTERNET EXPLORER Chapter 5. Chapter 5: Configure Internet Explorer2 CHAPTER OVERVIEW AND OBJECTIVES  Configuring Accessibility and Language.

11 CONFIGURE INTERNET EXPLORER Chapter 5. Chapter 5: Configure Internet Explorer2 CHAPTER OVERVIEW AND OBJECTIVES  Configuring Accessibility and Language.
THE WONDERFUL HISTORY OF COMPUTERS FROM THE BEGINNING HARDWARE, SOFTWARE,SAFTEY, AND COMPUTER ETHICS.

THE WONDERFUL HISTORY OF COMPUTERS FROM THE BEGINNING HARDWARE, SOFTWARE,SAFTEY, AND COMPUTER ETHICS.
Privacy and Encryption The threat of privacy due to the sale of sensitive personal information on the internet Definition of anonymity and how it is abused.

Privacy and Encryption The threat of privacy due to the sale of sensitive personal information on the internet Definition of anonymity and how it is abused.
 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.

 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.
Jared Cinque Section 6.  Internet tracking is the process of following internet activity backwards from recipient to user through a special type of software.

Jared Cinque Section 6.  Internet tracking is the process of following internet activity backwards from recipient to user through a special type of software.
11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 CHAPTER OVERVIEW Understand the differences between local user and domain.

11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 CHAPTER OVERVIEW Understand the differences between local user and domain.

Similar presentations

Ads by Google