| [RFC-2119] |
Bradner, S., «Ключевые слова для обозначения уровня требований в RFC», BCP 14, RFC 2119, Март 1997. |
| [RFC-2616], [RFC-2068] |
Fielding, R., Gettys, J., Mogul, J., Frystyk, H., Masinter, L., Leach, P., and T. Berners-Lee, «Протокол Передачи Гипертекста — HTTP/1.1», RFC 2616, Июнь 1999. |
| [RFC-2818] |
Rescorla, E., «HTTP Over TLS», RFC 2818, Май 2000. |
| [RFC-3490] |
Faltstrom, P., Hoffman, P., and A. Costello, «Internationalizing Domain Names in Applications (IDNA)», RFC 3490, Март 2003. |
| [RFC-3864] |
Klyne, G., Nottingham, M., and J. Mogul, «Registration Procedures for Message Header Fields», BCP 90, RFC 3864, Сентябрь 2004. |
| [RFC-3986] |
Berners-Lee, T., Fielding, R., and L. Masinter, «Uniform Resource Identifier (URI): Generic Syntax», STD 66, RFC 3986, Январь 2005. |
| [RFC-5246] |
Dierks, T. и E. Rescorla, «The Transport Layer Security (TLS) Protocol Version 1.2», RFC 5246, Август 2008. |
| [RFC-5890] |
Klensin, J., «Internationalized Domain Names for Applications (IDNA): Definitions and Document Framework», RFC 5890, Август 2010. |
| [RFC-5891] |
Klensin, J., «Internationalized Domain Names in Applications (IDNA): Protocol», RFC 5891, Август 2010. |
| [RFC-5895] |
Resnick, P. и P. Hoffman, «Mapping Characters for Internationalized Domain Names in Applications (IDNA) 2008», RFC 5895, Сентябрь 2010. |
| [RFC-6698] |
Hoffman, P. и J. Schlyter, «The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA», RFC 6698, Август 2012. |
| [UTS46] |
Davis, M. и M. Suignard, «Unicode IDNA Compatibility Processing», Unicode Technical Standard #46. |
| [Unicode] |
The Unicode Consortium, «The Unicode Standard». |
| [W3C.REC-html401-19991224] |
Raggett, D., Le Hors, A., and I. Jacobs, «HTML 4.01 Specification», World Wide Web Consortium Recommendation REC-html401-19991224, Декабрь 1999, <http://www.w3.org/TR/1999/REC-html401-19991224/>. |
| [Aircrack-ng] |
d'Otreppe, T., «Aircrack-ng», Accessed: 11-Jul-2010, <http://www.aircrack-ng.org/> |
| [BeckTews09] |
Beck, M. и E. Tews, «Practical Attacks Against WEP and WPA», Second ACM Conference on Wireless Network Security Zurich, Switzerland, 2009, <http://dl.acm.org/citation.cfm?id=1514286> |
| [CWE-113] |
«CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting')», Common Weakness Enumeration <http://cwe.mitre.org/>, The Mitre Corporation <http://www.mitre.org/>, <http://cwe.mitre.org/data/definitions/113.html> |
| [Firesheep] |
Various, «Firesheep», Wikipedia Online, ongoing, <http://secure.wikimedia.org/wikipedia/en/w/index.php?title=Firesheep&oldid;=517474182> |
| [ForceHTTPS] |
Jackson, C. и A. Barth, «ForceHTTPS: Protecting High-Security Web Sites from Network Attacks», In Proceedings of the 17th International World Wide Web Conference (WWW2008), 2008, <http://crypto.stanford.edu/forcehttp/> |
| [GoodDhamijaEtAl05] |
Good, N., Dhamija, R., Grossklags, J., Thaw, D., Aronowitz, S., Mulligan, D., and J. Konstan, «Stopping Spyware at the Gate: A User Study of Privacy, Notice and Spyware», In Proceedings of Symposium On Usable Privacy and Security (SOUPS) Pittsburgh, PA, USA, Июль 2005, <http://www.law.berkeley.edu/files/Spyware_at_the_Gate.pdf> |
| [HTTP1_1-UPD] |
Fielding, R., Ed., and J. Reschke, Ed., «Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing», Work in Progress, Октябрь 2012. |
| [JacksonBarth2008] |
Jackson, C. и A. Barth, «Beware of Finer-Grained Origins», Web 2.0 Security and Privacy Workshop, Oakland, CA, USA, 2008, <http://seclab.stanford.edu/websec/origins/fgo.pdf> |
| [OWASP-TLSGuide] |
Coates, M., Wichers, D., Boberski, M., and T. Reguly, «Transport Layer Protection Cheat Sheet», Accessed: 11-Jul-2010, <http://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet> |
| [RFC-1035] |
Mockapetris, P., «Domain names — implementation and specification», STD 13, RFC 1035, Ноябрь 1987. |
| [RFC-2560] |
Myers, M., Ankney, R., Malpani, A., Galperin, S., and C. Adams, «X.509 Internet Public Key Infrastructure Online Certificate Status Protocol — OCSP», RFC 2560, Июнь 1999. |
| [RFC-4033] |
Arends, R., Austein, R., Larson, M., Massey, D., and S.Rose, «Безопасность DNS - Введение и Требования», RFC 4033, Март 2005. |
| [RFC-4732] |
Handley, M., Rescorla, E., and IAB, «Internet Denial-of-Service Considerations», RFC 4732, Декабрь 2006. |
| [RFC-4949] |
Shirey, R., «Internet Security Glossary, Version 2», RFC 4949, Август 2007. |
| [RFC-5226] |
Narten, T. и H. Alvestrand, «Guidelines for Writing an IANA Considerations Section in RFCs», BCP 26, RFC 5226, Май 2008. |
| [RFC-5280] |
Cooper, D., Santesson, S., Farrell, S., Boeyen, S., Housley, R., and W. Polk, «Описание сертификатов и списков отозванных сертификатов (CRL) для Х.509/PKI-инфраструктуры Интернет-сети», RFC 5280, Май 2008. |
| [RFC-5894] |
Klensin, J., «Internationalized Domain Names for Applications (IDNA): Background, Explanation, and Rationale», RFC 5894, Август 2010. |
| [RFC-5905] |
Mills, D., Martin, J., Burbank, J., and W. Kasch, «Протокол сетевого времени NTPv4», RFC 5905, Июнь 2010. |
| [RFC-6066] |
Eastlake, D., «Transport Layer Security (TLS) Extensions: Extension Definitions», RFC 6066, Январь 2011. |
| [RFC-6101] |
Freier, A., Karlton, P., and P. Kocher, «The Secure Sockets Layer (SSL) Protocol Version 3.0», RFC 6101, Август 2011. |
| [RFC-6125] |
Saint-Andre, P. и J. Hodges, «Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS)», RFC 6125, Март 2011. |
| [RFC-6265] |
Barth, A., «HTTP State Management Mechanism», RFC-6265, Апрель 2011. |
| [RFC-6454] |
Barth, A., «The Web Origin Concept», RFC-6454, Декабрь 2011. |
| [SunshineEgelmanEtAl09] |
Sunshine, J., Egelman, S., Almuhimedi, H., Atri, N., and L. Cranor, «Crying Wolf: An Empirical Study of SSL Warning Effectiveness», In Proceedings of 18th USENIX Security Symposium Montreal, Canada, Август 2009, <http://www.usenix.org/events/sec09/tech/full_papers/sunshine.pdf> |
| [W3C.REC-wsc-ui-20100812] |
Roessler, T. и A. Saldhana, «Web Security Context: User Interface Guidelines», World Wide Web Consortium Recommendation REC-wsc-ui-20100812, Август 2010, <http://www.w3.org/TR/2010/REC-wsc-ui-20100812> |
| [WebTracking] |
Schmucker, N., «Web Tracking», SNET2 Seminar Paper — Summer Term, 2011, <http://www.snet.tu-berlin.de/fileadmin/fg220/courses/SS11/snet-project/ web-tracking_schmuecker.pdf> |