DEF CON 22 David Wyde Client Side HTTP Cookie Security: Attack and Defense

Slides: ClientSide HTTP Cookie Security: Attack and Defense David Wyde SOFTWARE ENGINEER, CISCO HTTP cookies are an important part of trust on the web. Users often trade their login credentials for a cookie, which is then used to authenticate subsequent requests. Cookies are valuable to attackers: passwords can be fortified by twofactor authentication and new login location detected