CFA/Security-Research/Cookies

From MozillaWiki
Jump to: navigation, search

« Comparative Feature Analyses
« Security Notes
« Security Research


Current Capabilities

  • Accepting cookies
    • Exceptions
    • Show cookies/cookie manager
    • Discard when quitting

Upcoming Capabilities

Features by 3rd parties or other browsers

  • Accept cookies only from the current site (OmniWeb)
  • Block/prompt/accept third-party cookies (IE)

Additional features

Screenshots

CookieIE.PNG

Conclusions

  • Outside of privacy concerns, cookie security concerns lie in cross-site scripting
    • One site can gain unauthorized access to another site's cookies through flaws in the website. Is this something the browser can prevent?