コミュニティアチーブメントバーを展開する。

Submissions are now open for the 2026 Adobe Experience Maker Awards
Apply Now

Mark Solution

この会話は、活動がないためロックされています。新しい投稿を作成してください。

解決済み

How to secure the s_cc & s_sq cookies

Avatar

Level 1
Level 1
2015/10/15 7:26:57 PM

Is there a way to encrypt these two cookies using the standard secure flag?  What about httponly?

表示

5.0K

返信

4
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳
1 受け入れられたソリューション

Avatar

正解者
Employee
Employee
2015/10/15 7:26:57 PM

Hi Matt,

Just a follow up on this.  The s_cc and s_sq cookies are set and read within AppMeasurement code.  I don't believe there is anything that checks s_cc or s_sq on the server's end.  What this means is I don't think that you would be able to change how these cookies are set (httpOnly or secure) unless you are using your own s.trackingServer implementation and have a service to call on that domain that modifies these cookies.

Because they are read within the AppMeasurement javascript code, setting these to httpOnly would affect functionality and stats.

However, changing them to secure would probably not affect functionality or stats.

Thanks,

Ben

元の投稿で解決策を見る

表示

3.1K

返信

0
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳
返信にジャンプ
4 返信

Avatar

Level 5
Level 5
2015/10/15 7:26:57 PM

Hi

 

Please consider below mentioned step while working with cookies:

  • Limit the amount of sensitive information stored in the cookie.
  • Limit the subdomains and paths to prevent interception by another application.
  • Enforce SSL so the cookie isn’t sent in cleartext.
  • Make the cookie HttpOnly so its not accessible to javascript.

 

 

Regards

Devinder

表示

3.2K

返信

0
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳

Avatar

Level 1
Level 1
2015/10/15 7:26:57 PM

Hi Devinder,

 

If we set the secure flag and the httponly flag for the Site Catalyst cookies will it affect any functionality or stats?

表示

3.1K

返信

0
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳

Avatar

正解者
Employee
Employee
2015/10/15 7:26:57 PM

Hi Matt,

Just a follow up on this.  The s_cc and s_sq cookies are set and read within AppMeasurement code.  I don't believe there is anything that checks s_cc or s_sq on the server's end.  What this means is I don't think that you would be able to change how these cookies are set (httpOnly or secure) unless you are using your own s.trackingServer implementation and have a service to call on that domain that modifies these cookies.

Because they are read within the AppMeasurement javascript code, setting these to httpOnly would affect functionality and stats.

However, changing them to secure would probably not affect functionality or stats.

Thanks,

Ben

表示

3.1K

返信

0
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳
返信にジャンプ

Avatar

Level 5
Level 5
2015/10/15 7:26:57 PM

Hi

As soon as it went under secure gateway the cookies need to be rewrite with the same value or could use specific programming functions to sustain the preset values.

 

 

Regards

Devinder

表示

3.5K

返信

0
ログインしてこのコンテンツに「いいね!」する

いいね!の合計

翻訳
翻訳
関連する会話
How to best configure for one or more values in an evar for Adobe Dashboard? Solved

表示

1.5K

いいね!

0

返信

3
Tracking without cookie consent

表示

72

いいね!

0

返信

3
How do you get stakeholders to actually trust funnel and attribution data?

表示

841

いいね!

0

返信

2
Flow Charts - Starts and Contains incorrectly gives the same Next column values

表示

518

いいね!

0

返信

1
How to exclude users from a certain result in a dimension

表示

82

いいね!

0

返信

1