Overview
Français
ABSTRACT
For the last 22 years, the Web, its language HTML and its transport protocol HTTP have evolved from being simple tools to access and read static documents, to being a fully-fledged universal interface between humans, computers and data. The browser, the control device for this interface, can access and transform data, either on the server side, with its databases, or on the client side, the user’s computer. All these programs can exchange data. This evolution is opening up new possibilities that were unthinkable in the last century, but also creating new risks that require protective measures.
Read this article from a comprehensive knowledge base, updated and supplemented with articles reviewed by scientific committees.
Read the articleAUTHOR
-
Laurent BLOCH: Cyberstrategy Researcher, Paris
INTRODUCTION
The Internet's prehistory dates back to 1969, but it didn't really take off until 1984, with the adoption of TCP/IP protocols and the separation of the military (MILNET) and scientific (NSFNET) networks. The Internet enabled worldwide network communications, but it was the Web, its HTML language and HTTP transport protocol, publicly announced in 1991, and the first NCSA Mosaic browser (1993) that brought it to the general public, raising unprecedented security issues.
Since 1984, the Web, its HTML language and HTTP transport protocol have been transformed from a means of accessing and consulting static documents to a universal connector between humans, machines and data. The Web browser, for example, has become the standard interface for enterprise management software, eliminating the need to deploy "fat clients" on every workstation. As the control unit of this interface, it can now trigger actions on data, both on the server side and on the user's machine. All these programs can communicate with each other and exchange data, opening up possibilities unimaginable in the last century, but also unprecedented risks to be guarded against.
Since its birth in 1991 and the widespread use of the Web by hundreds of millions of Internet users at the turn of the century, the Web has undergone considerable transformations, radically changing the measures required to ensure its safe use, whether on the server and content management software side, or on the Internet user's browser side.
With the launch of the Symbian system in 1998 on Ericsson, Motorola and Nokia cell phones, these devices became true computers, but it wasn't until the launch of the iPhone by Apple in 2007 that phones gained full access to the Internet, opening up all Web uses to their owners, which was not without new risks and the need for security measures adapted to this new ecosystem.
These are the issues addressed in this article.
The Ultimate Scientific and Technical Reference
KEYWORDS
Computer | smartphone | internet | web | web and networks safety
This article is included in
Software technologies and System architectures
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Web and mobile application security
New security issues for the Web and mobiles
Bibliography
Organizations
OWASP – Open web application security project
Https://www.owasp.org/index.php/main_page
W3Techs – world wide web technology survey
Standards
- spécifications pour l'implémentation de réseaux numériques locaux à liaison sans fil - IEEE 802.11 - 2014
- The Transport Layer Security (TLS) Protocol Version 1.2 - RFC5246 - 2008
- Information Technology – Open systems interconnection – The directory: general framework for public key and attribute certificates - ITU T X.509 - 2016
- The web origin concept - RFC6454 - 2011
The Ultimate Scientific and Technical Reference
