Recommended Articles for Understanding Cookies and Sessions

Tadashi Shigeoka ·  Tue, November 26, 2019

I’ve compiled a “list of recommended articles for understanding Cookies and Sessions” for beginner web engineers.

Cookie Session

Understanding Cookies and Sessions Roughly

To help understand Cookies and Sessions, I think it would be good to read the following articles in order.

I’ve arranged them in an order that seems easy for beginner web engineers to understand, with helpful diagrams.

  1. 【PHP超入門】Cookieとセッションについて - Qiita
  2. Cookieとセッションをちゃんと理解する - Qiita
  3. Webアプリのセッション管理とデータ保存を学ぶ#1(社内勉強会)

🍪 About Cookies

  1. HTTP Cookieとは (1/2):超入門HTTP Cookie - @IT
  2. cookieとは?基本から分かりやすく解説!

IPA ISEC Secure Programming Course Chapter 4: Session Countermeasures

From a security perspective, it’s also good to read the following IPA session countermeasures series articles.

IPA ISEC セキュア・プログラミング講座:Webアプリケーション編 第4章 セッション対策:リクエスト強要(CSRF)対策

That’s all from the Gemba.