Google / Heroku / Adam Barth Google Inc. / ASP.NET / / /
Event
Reorganization / /
IndustryTerm
origin server / Web Attacker The web attacker / Internet service providers / cookie protocol / web applications secure session state / Web Applications / web attacker / target web site / client-side protocol / web browsers / application developers / protocol / Web-key / session management technology / web application / web browser / web standards / sustainable solution / web site frameworks / basic web primitives / web attackers / web platform features / confidentiality against active network / target site / secure communications / target server / Web-based Applications / certain web applications / desktop applications / untrusting applications / honest site / malicious web site / browser technology / federation protocol / stateless protocol / web security literature / Cloud hosting services / similar protocols / session management / Internal corporate networks / Web Authentication / cloud computing / less demanding applications / Internet Explorer / browser technologies / /
OperatingSystem
Mac OS X / Windows 7 / Linux / /
Organization
University of Washington / Mozilla Foundation / Internet Engineering Task Force / Stanford University / /
Person
Andrew Bortz / /
ProgrammingLanguage
ASP.NET / Ruby on Rails / Java / php / JavaScript / /
SportsLeague
Stanford University / /
Technology
1.0 Protocol / Linux / federation protocol / API / separate protocol / Mobile Phones / browser technology / html / cookie protocol / SSL / existing federation protocol / Encryption / cryptography / client-side protocol / DNS / browser technologies / HTTP / session management technology / existing browser technologies / Flash / inherently stateless protocol / using existing browser technologies / /
Origin Cookies: Session Integrity for Web Applications Andrew Bortz Stanford University