Lesson Plan

• Describe what a cookie is and its purpose in web communication.
• Explain how cookies are created, stored, and transmitted between browser and server.
• Identify common uses of cookies such as session management, personalization, and analytics.
• Evaluate security and privacy considerations associated with cookies and apply best‑practice settings.

• Projector and screen
• Computer with internet access
• Sample HTTP header handout
• Browser developer‑tools demonstration
• Worksheet for matching cookie attributes
• Quiz cards for exit ticket

Begin with a quick poll: “Which websites remember your preferences without asking you to log in each time?” Connect this to prior knowledge of HTTP requests and highlight that cookies enable such experiences. Explain that by the end of the lesson students will be able to describe how cookies work, list their uses, and assess their security implications.

1. Do‑now (5'): Think‑pair‑share on examples of sites that remember you.
2. Mini‑lecture (10'): Definition of cookies, flow diagram, and typical attributes.
3. Guided demo (15'): Use browser dev tools to view Set‑Cookie and Cookie headers in a live site.
4. Group activity (10'): Worksheet matching cookie attributes to their functions (e.g., Secure, HttpOnly).
5. Security discussion (10'): Risks, privacy concerns, and best‑practice settings.
6. Exit ticket (5'): One‑sentence summary of why cookies are both useful and risky.

Recap the cookie lifecycle, its main purposes, and the security measures that protect users. Collect exit tickets to gauge understanding, then assign a short homework: research a real‑world website’s cookie consent notice and note any security flags used.