Web Security

Web security covers the security of web servers, browsers, users, and organizations that all interact over the Internet. This module starts with a quick course in how the Internet and websites function then moves on to more classic website attacks like Cross Site Scripting.

Slides

2025 Slides

• 16-WebSecurity
  • Topics: How websites are built
• 17-Cookies
  • Topics: Cookies, web tracking, cookie access control
• 17-WebSecurity-XSS
  • Topics: Cross Site Scripting (XSS)
  • Note that a few “New Slide” slides were added after lectuer to give examples of a few points that were confusing.
• 18-WebSecurity
  • Topics:

News

• Post Office Scandle Official Report

Additional Resources

Research Papers

• Daniel Kirkman, Kami Vaniea, Daniel W. Woods (2023). DarkDialogs: Automated detection of 10 dark patterns on cookie dialogs. In Proceedings of the 8th IEEE European Symposium on Security and Privacy (EuroSP'23).