Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

The Insecurity Caused by Trusting Your Client-Side Storage

OWASP Foundation via YouTube

Start learning Write review
Udacity Ad

Master AI & Data—50% Off Udacity (Code CC50)

Learn More → Pragmatic Institute Ad

Foundations for Product Management Success

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the security risks associated with client-side storage in this 41-minute conference talk from the OWASP Foundation. Delve into the vulnerabilities of cookies and web storage, understanding the potential for exploitation in web applications. Learn about tainted chromium, exploit patterns, and attack vectors through practical demonstrations. Examine the credibility of IndexDB and the dangers of exploitable data in JSON objects. Discover the concept of cold cashing and its implications. Gain insights into effective solutions, including the importance of host names in securing client-side storage. Conclude with a comprehensive understanding of the insecurities caused by trusting client-side storage and strategies to mitigate these risks.

Syllabus

Intro
Cookies
Web Storage
What we are doing
The tainted chromium
Exploiting web applications
Exploit patterns
Attack vectors
Demo
IndexDB Credibility
Exploitable Data
JSON Objects
Cold Cashing
Solutions
Host Names
Conclusion

Taught by

OWASP Foundation

Reviews

Start your review of The Insecurity Caused by Trusting Your Client-Side Storage

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.