https://ece.uwaterloo.ca/~kvaniea/teaching/ece458/S2026/modules/web-security/index.html Web security covers the security of web servers, browsers, users, and organizations that all interact over the Internet. This module starts with a quick course in how the Internet and websites function then moves on to more classic website attacks like Cross Site Scripting. Slides 2025 Slides 16-WebSecurity Topics: How websites are built 17-Cookies Topics: Cookies, web tracking, cookie access control 17-WebSecurity-XSS Topics: Cross Site Scripting (XSS) Note that a few “New Slide” slides were added after lectuer to give examples of a few points that were confusing. 18-WebSecurity Topics: News Post Office Scandle Official Report Additional Resources Research Papers Daniel Kirkman, Kami Vaniea, Daniel W. Woods (2023). DarkDialogs: Automated detection of 10 dark patterns on cookie dialogs. In Proceedings of the 8th IEEE European Symposium on Security and Privacy (EuroSP'23). Hugo en-us kami.vaniea@uwaterloo.ca (Kami Vaniea) kami.vaniea@uwaterloo.ca (Kami Vaniea)