Hypertext Transfer Protocol headers

An HTTP cookie is a small block of data created by a web server while a user is browsing a website and placed on the user's computer or other device by the user's web browser. Cookies are placed on the device used to access a website, and more than one cookie may be placed on a user's device during a session.

HTTP header field that identifies the address of the webpage that linked to the resource being requested

The idea is to organize content based on the origin from which it arrives at the browser, preventing outside interference.

HTTP response header field and associated policy

Wikimedia list article

The X-Forwarded-For (XFF) HTTP header field is a common method for identifying the originating IP address of a client connecting to a web server through an HTTP proxy or load balancer.

communications protocol

computer security concept, to prevent cross-site scripting and related attacks

HTTP header field that requests web applications to disable individual user tracking

Internet security mechanism delivered via an HTTP header which allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates

A vulnerability that inserts invalid input, including line break codes, into an HTTP header, resulting in a false response or website tampering, and an attack that exploits this vulnerability

method of instructing a browser to automatically refresh a web page

web application vulnerability that occurs when HTTP headers are dynamically generated from user input; can allow for HTTP response splitting, session fixation (via Set-Cookie), cross-site scripting, and malicious redirect attacks

streaming data transfer mechanism in HTTP/1.1, which divides the data stream into nonoverlapping chunks sent and received independently