Websites contain several different types of information. Some of it is non-sensitive, for example the copy shown on the public pages. Some of it is sensitive, for example customer usernames, passwords, and banking information, or internal algorithms and private product information. By @mozilla.
Security and privacy are distinct topics, but they are also closely-related. It is worth knowing the difference between the two and how they relate. In this guide you will find info on:
- Relationship between security and privacy
- Security services provided by browsers
- Security considerations for client-side developers
- Store client-side data responsibly
- Protect user identity and manage logins
- Don’t include sensitive data in URL query strings
- Enforce usage policies
- Maintain data integrity
- Sanitize form input
- Protect against clickjacking
… and more. Handling data responsibly is largely concerned with cutting down on cookie usage and being careful about the data you store in them. You should prepare for the removal of cross-site cookies by limiting the amount of tracking activities you rely on and/or by implementing desired information persistence in other ways. Excellent read!
[Read More]