CFA/Security-Research/Cookies
From MozillaWiki
< CFA | Security-Research
« Comparative Feature Analyses
« Security Notes
« Security Research
Contents
Current Capabilities
- Accepting cookies
- Exceptions
- Show cookies/cookie manager
- Discard when quitting
Upcoming Capabilities
Features by 3rd parties or other browsers
- Accept cookies only from the current site (OmniWeb)
- Block/prompt/accept third-party cookies (IE)
Additional features
Screenshots
Conclusions
- Outside of privacy concerns, cookie security concerns lie in cross-site scripting
- One site can gain unauthorized access to another site's cookies through flaws in the website. Is this something the browser can prevent?