Some thoughts on the Security of Cookies

Websites use cookies to manage user login sessions and sometimes tracking users' behaviors. So, essentially a cookie is a set of key-value pair data, that is downloaded and stored in the client machines. Each cookie is created by a "website", and the web browsers send the cookie as an HTTP header when the client accesses… Continue reading Some thoughts on the Security of Cookies

Service-to-Service Authentication on the Cloud

Overview Service-to-Service authentication over the cloud is probably one of most common authentication scenarios that are required. A service calling another service could be within the same domain boundary, e.g. a micro service calling another micro service or could be across the domain if the service is calling another service outside its own boundary. Essentially,… Continue reading Service-to-Service Authentication on the Cloud