You are here

Home » API reference » Secure Cookie Data 7

README.txt in Secure Cookie Data 7

Same filename and directory in other branches
  1. 7.2 README.txt
Secure Data Cookie
==================

Introduction
------------

**Secure Data Cookie** is a module that implements the [Secure Cookie
Protocol](http://www.cs.utexas.edu/~gouda/papers/conference/cookie.pdf).
This protocol garantuees that cookies cannot be tampered.

Tamper resistance is achieved through the use of an HMAC that validates
the data stored in the cookie each time the data is retrieved. If the
validation fails an empty object is returned.

Design goals
------------

The goals we aim for are two:

1.  Have a way to store data in a cookie so that this data cannot be
    tampered with.

2.  Have data confidentiality. Note that at the moment that's not yet
    implemented.

Target Audience
---------------

This is a module aimed at **developers** or to site builders that
*dabble* in development to put it bluntly.

Use Cases
---------

Use cases for the module are whenever **security** and/or
**performance** are at play.

It's common for module developers to use session variables to store some
particular settings that are specific to a given user. This practices
raises two issues:

1.  As soon as you store anything in a session, i.e., *write* to
    `$_SESSION`, Drupal starts a session, sending a cookie with a
    session token. This invalidates the vast majority of caching
    strategies.

2.  When setting a session variable you hit the persistence layer.
    Meaning the database in most cases. Therefore hurting performance.

This module addresses these issues by maintaining whatever it is you
need to store between the client and the server. The overhead in terms
of HTTP payload size is negligable relative to the common Drupal size
page.

Howto Use
---------

The module provides two functions to be used in your module to store and
retrieve data from the cookie.

### Setting/modifying a cookie

Invoke `secure_data_cookie_put(<data>)` where `<data>` is the data you
want to store in the cookie. By default the cookie is called
`SecureCookieData`. The name can be altered through the
`SecureCookieBasic` class `$__cookie_name` attribute.

Usually you have the data in a serialized format. JSON is particularly
useful. Here's a complete example:

    secure_cookie_data_put(json_encode(array('arg' => 'property_one')));

this creates a cookie (named `SecureDataCookie` by default)with the
given name containing a base64 encoding of the data:

    eyJhcmciOiJ0ZXN0WVVZZ2hnaFVtZTM0NTUiLCJobWFjIjoiZThhNmVmNmNmNjFiMTMxZGZmMDcxMzhiZDcyYTdmNTkwM2I1YzY5NiJ9

Now to recover the value you do:

    secure_cookie_data_get();

that prints the initial array.

You can modify the default secret used for computing the HMAC. You set
the attribute `secureCookieBasic::$__secret`.

That's it.

Final Remarks
-------------

Note that the secret generation could be done automatically upon
install. Nevertheless that would void one of the design goals which is
to avoid hitting the database at all. Since setting the value in install
would envolve using a variable, hence the database.

Even if it's a little less convenient, the gains in terms of simplicity
and performance justify it largely.

TODO
----

-   Implement cookie data confidentiality using crypto.

Acknowledgements
----------------

The development and maintenance of this module is sponsored by [Commerce
Guys](http://commerceguys.com).

File

README.txt
View source 
  1. Secure Data Cookie

  2. ==================

  3. 

  4. Introduction

  5. ------------

  6. 

  7. **Secure Data Cookie** is a module that implements the [Secure Cookie

  8. Protocol](http://www.cs.utexas.edu/~gouda/papers/conference/cookie.pdf).

  9. This protocol garantuees that cookies cannot be tampered.

  10. 

  11. Tamper resistance is achieved through the use of an HMAC that validates

  12. the data stored in the cookie each time the data is retrieved. If the

  13. validation fails an empty object is returned.

  14. 

  15. Design goals

  16. ------------

  17. 

  18. The goals we aim for are two:

  19. 

  20. 1.  Have a way to store data in a cookie so that this data cannot be

  21.     tampered with.

  22. 

  23. 2.  Have data confidentiality. Note that at the moment that's not yet

  24.     implemented.

  25. 

  26. Target Audience

  27. ---------------

  28. 

  29. This is a module aimed at **developers** or to site builders that

  30. *dabble* in development to put it bluntly.

  31. 

  32. Use Cases

  33. ---------

  34. 

  35. Use cases for the module are whenever **security** and/or

  36. **performance** are at play.

  37. 

  38. It's common for module developers to use session variables to store some

  39. particular settings that are specific to a given user. This practices

  40. raises two issues:

  41. 

  42. 1.  As soon as you store anything in a session, i.e., *write* to

  43.     `$_SESSION`, Drupal starts a session, sending a cookie with a

  44.     session token. This invalidates the vast majority of caching

  45.     strategies.

  46. 

  47. 2.  When setting a session variable you hit the persistence layer.

  48.     Meaning the database in most cases. Therefore hurting performance.

  49. 

  50. This module addresses these issues by maintaining whatever it is you

  51. need to store between the client and the server. The overhead in terms

  52. of HTTP payload size is negligable relative to the common Drupal size

  53. page.

  54. 

  55. Howto Use

  56. ---------

  57. 

  58. The module provides two functions to be used in your module to store and

  59. retrieve data from the cookie.

  60. 

  61. ### Setting/modifying a cookie

  62. 

  63. Invoke `secure_data_cookie_put()` where `` is the data you

  64. want to store in the cookie. By default the cookie is called

  65. `SecureCookieData`. The name can be altered through the

  66. `SecureCookieBasic` class `$__cookie_name` attribute.

  67. 

  68. Usually you have the data in a serialized format. JSON is particularly

  69. useful. Here's a complete example:

  70. 

  71.     secure_cookie_data_put(json_encode(array('arg' => 'property_one')));

  72. 

  73. this creates a cookie (named `SecureDataCookie` by default)with the

  74. given name containing a base64 encoding of the data:

  75. 

  76.     eyJhcmciOiJ0ZXN0WVVZZ2hnaFVtZTM0NTUiLCJobWFjIjoiZThhNmVmNmNmNjFiMTMxZGZmMDcxMzhiZDcyYTdmNTkwM2I1YzY5NiJ9

  77. 

  78. Now to recover the value you do:

  79. 

  80.     secure_cookie_data_get();

  81. 

  82. that prints the initial array.

  83. 

  84. You can modify the default secret used for computing the HMAC. You set

  85. the attribute `secureCookieBasic::$__secret`.

  86. 

  87. That's it.

  88. 

  89. Final Remarks

  90. -------------

  91. 

  92. Note that the secret generation could be done automatically upon

  93. install. Nevertheless that would void one of the design goals which is

  94. to avoid hitting the database at all. Since setting the value in install

  95. would envolve using a variable, hence the database.

  96. 

  97. Even if it's a little less convenient, the gains in terms of simplicity

  98. and performance justify it largely.

  99. 

  100. TODO

  101. ----

  102. 

  103. -   Implement cookie data confidentiality using crypto.

  104. 

  105. Acknowledgements

  106. ----------------

  107. 

  108. The development and maintenance of this module is sponsored by [Commerce

  109. Guys](http://commerceguys.com).