Cookie spoofing

Cookie spoofing is a method of circumventing website authentication systems, where a user's login details are stored within a cookie. With legitimate access, this allows page requests to verify a user's status and their access rights. Use of cookies in this way potentially allows an attacker to falsely authenticate themselves as a legitimate user.

Cookie spoofing is a common security issue with website applications built from scratch, without consideration for more advanced security holes.

Use of encryption within cookies can be used to help prevent spoofing.

Cookie spoofing is a definition, listed in the security category. This entry was created on 18 June 2009, at 20:31 , and was last updated on 18 June 2009, at 20:32.  

About the author

Nick Johnston is a self employed computing consultant, working in several facets of the IT industry. With an initial interest in business and computer security, his roles have spread to many other areas.

Nick is currently available for project and contract work - contact Nick for more information.

© 2010 Nick Johnston.

Share!

Share |