Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies

IEEE via YouTube

Start learning Write review
Simplilearn Ad

Pass the PMP® Exam on Your First Try — Expert-Led Training

Learn More → Coursera Ad

AI, Data Science & Business Certificates from Google, IBM & Microsoft

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the usage, effectiveness, and adequacy of SameSite cookies in this 17-minute IEEE conference talk. Delve into the adoption of SameSite policies, functionality breakage, and potential threats such as CSRF attacks through state-changing GET and POST requests. Examine new threats like policy downgrades and the adequacy of Lax mode. Gain insights into browser inconsistencies and web framework implementations. Understand the current state of SameSite cookies and their impact on web security through comprehensive analysis and research findings presented by experts from CISPA Helmholtz Center for Information Security.

Syllabus

Intro
SameSite Cookies
Problem Statement
Adoption of SameSite Policies
Functionality Breakage
Threat: CSRF by Replaying State-changing GET
Threat: CSRF by Forging State-changing POST
New Threats: Policy Downgrades
RQ3: Lax Adequacy and Threats to Effectiveness
Browser Inconsistencies and Web Frameworks
Conclusion

Taught by

IEEE Symposium on Security and Privacy

Tags

Reviews

Start your review of The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.