-
Website
http://sns.cs.princeton.edu/ -
Original page
http://sns.cs.princeton.edu/2009/09/coralcdn-lesson-the-great-naming-conflation-of-the-web/ -
Subscribe
All Comments -
Community
-
-
Top Commenters
-
Popular Threads
In trying to comprehend the scope of the security issues you raise, I conclude that only cookies set by nyud.net-cached content are vulnerable. So, I just use coral cache for images and truly static content.
But, what's to stop evildoer from linking to my script that sets cookies? Nothing. But, how would he gain the trust of the user in order for the user to click on the nyud.net link? Then, how would evildoer track that click and convince the user to go to the malicious site to hijack data?
Coral CDN sounds like a great asset for bandwidth-poor folks. I hope you can improve upon it. As is, it seems very workable so long as developers understand the caveats such as security and the potential to skew statistics.
Thanks for raising the issue.
Actually, the cookie issue is much less a security issue if you are a website that is trying to explicitly use CoralCDN for cached content. You should just specify that your code uses the full origin name when setting cookies: www.yoursite.com.nyud.net, instead of just setting a default of the domain.tld (i.e., nyud.net) for "ease of use". This is good security practice anyway: the principle of least privilege and all. Then a user from evil.com.nyud.net can't read cookies set to www.yoursite.com.nyud.net, as it fails the same origin policy check.
The problem I raise above is more when a website is being accessed by a Coralized URL and they are not similarly security conscious, so that they default to using the domain.tld, instead of the full origin name.
Let me know if that assuages your concern.
For more jobs visit http://www.staffingpower.com