HTTP headers are something that we think we know, but it is something that we don’t really spend much time trying to learn. They are really important tools if you really want to reach the full potential of our web apps or web security that you are developing. With that, let’s start by answering the …
Server Name Indication (SNI) is an extension to the Transport Layer Security (TLS) protocol by which a client specifies which hostname (or domain name) it is attempting to connect to at the start of the TLS/SSL handshaking process. To understand what this definition actually means and how it works, let’s break it down into 3 …
The world has been more connected than ever before. Now, anyone can purchase airline tickets, book restaurant reservations, look for freelancer, and buy food online. But how can we make all of this possible? Perhaps, when you ask programmers or developers, you might hear them answer, all those services are made possible because of this …
In this age of sophisticated IT and advanced digital innovations, it is vital for companies to understand the online threats they might face and what the security defenses they can use to protect themselves. Historically, companies have protected their devices and user data with a network firewall, commonly known as firewall. However, as internet technology …
HTTP response status codes (or simply status codes) are three-digit codes issued by a server in response to a browser-side request from a client. These status codes serve as a means of quick and concise communication on how the server worked on and responded to the client’s request. These codes also include codes from IETF …
There are two fundamental types of websites: static websites and dynamic websites. The core difference between the two lies in the notion of whether the webpages are pre-rendered and hosted on the server, or whether the webpages are generated on the server in real-time upon user’s request. The former is considered as a static website, …
HTTP defines request methods to indicate the desired action to be performed for a given resource. These methods are sometimes referred to as HTTP verbs, although they can also be nouns (e.g. HEAD and OPTIONS). Often, the resource in consideration, corresponds to a file or an output of an executable residing on the server. By …
When we go online shopping or banking, for security, we expect to see the website to have both the “HTTPS” and the secured lock icon on the address bar. But what does this “HTTPS” and lock icon actually mean? To answer these questions we need to understand HTTPS, SSL protocol, and SSL certificates. On HTTPS, …
TCP or transmission control protocol is a reliable and connection-oriented protocol, and with TCP data can be delivered accurately. Many applications, such as web (HTTP), email (SMTP), and file transfer (FTP) use TCP. Before TCP transmits data segments from one device to another on the internet, it will first use a 3-way handshake to establish …
The internet is like a vast map of interconnected computers and devices, full of avenues and streets, wherein each computer can be located using an address within the network. Just like real houses not having the same street addresses, you won’t find two computers connected to the internet that have the same address. Though, unlike …
