Basic web security model - Stanford Crypto Group
Basic web security model - Stanford Crypto Group
Basic web security model - Stanford Crypto Group
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Setting/deleting cookies by server<br />
Browser<br />
if expires=NULL:<br />
this session only<br />
GET …<br />
HTTP Header:<br />
Set-cookie: NAME=VALUE ;<br />
• Delete cookie by setting “expires” to date in past<br />
• Default scope is domain and path of setting URL<br />
Server<br />
domain = (when to send) ;<br />
path = (when to send)<br />
secure = (only send over SSL);<br />
expires = (when expires) ;<br />
HttpOnly (later)<br />
scope