Explain the purpose and functions of a web browser
Cambridge IGCSE Computer Science (0478) – The Internet and its Uses: Web Browser
Objective
Explain the purpose and functions of a web browser, including URL structure, the HTTP/HTTPS request‑response cycle, DNS resolution, caching, cookies, and basic security features. Relate each point to the relevant IGCSE assessment objectives (AO1–AO3).
1. The Internet vs. the World‑Wide‑Web
- Internet: A global network of computers, routers and other devices that exchange data using the TCP/IP protocol suite.
- World‑Wide‑Web (WWW): One of many services that run on the Internet. It uses the Hypertext Transfer Protocol (HTTP/HTTPS) to request and deliver hypertext documents (web pages).
- Domain Name System (DNS): A distributed directory that translates a human‑readable domain name (e.g.,
www.example.com) into a numeric IP address (e.g.,93.184.216.34) that computers use to locate each other on the Internet.
2. What Is a Web Browser?
A web browser is a software application that acts as the user’s gateway to the WWW. It:
- Accepts a web address (URL) from the user.
- Resolves the URL to an IP address via DNS.
- Communicates with web servers using HTTP or HTTPS.
- Retrieves, interprets and displays the requested resources (HTML, CSS, JavaScript, images, etc.).
- Provides tools for navigation, data storage (caches, cookies), and security.
3. URL Structure
A Uniform Resource Locator (URL) tells the browser where a resource is located and how to obtain it.
| Component | Purpose | Example |
|---|---|---|
| Protocol | Specifies the communication method (http or https) | https:// |
| Domain name | Identifies the host server (looked‑up via DNS) | www.example.com |
| Path | Location of the file on the server | /articles/index.html |
| Query string (optional) | Passes data to the server | ?id=25&type=article |
Full example: https://www.example.com/articles/index.html?id=25&type=article
4. Core Purposes of a Web Browser
- Access and render web pages.
- Navigate between resources using hyperlinks.
- Interact with web applications (forms, online games, e‑learning tools).
- Store temporary data (caches, cookies) to speed up loading and maintain session state.
- Provide security measures such as SSL/TLS validation, safe‑browsing warnings and sandboxing.
5. Main Functions of a Web Browser
| Function | Description | Typical User Action |
|---|---|---|
| URL Resolution (DNS) | Looks up the domain name in a DNS server and obtains the corresponding IP address. | Enter a web address and press Enter. |
| HTTP/HTTPS Request | Sends a request line (e.g., GET /index.html HTTP/1.1) plus header fields. HTTPS adds an SSL/TLS handshake that encrypts the traffic. |
Click a link, submit a form, or press Enter after typing a URL. |
| Response Handling | Receives a status line (e.g., HTTP/1.1 200 OK or 404 Not Found) and response headers, then the body containing the requested data. |
Browser displays the page or an error message. |
| Rendering Engine | Parses HTML, CSS and JavaScript, builds the Document Object Model (DOM), applies styles and paints the visual layout. | Page appears on the screen automatically after data is received. |
| Cache Management | Stores copies of frequently used resources locally; decides whether to reuse them based on Cache‑Control, Expires and ETag headers. |
Loads a cached image instead of downloading it again. |
| Cookie Handling | Accepts Set‑Cookie headers, stores session or persistent cookies, and sends them back in subsequent requests. |
Log in once and stay logged in on later visits. |
| Security Checks | Validates SSL certificates, blocks known malicious scripts, and shows warnings for deceptive or unsafe sites. | Padlock icon for a secure site; warning page for a flagged site. |
| Bookmarking | Allows users to save and organise favourite URLs for quick access. | Click the star icon to add the current page to bookmarks. |
6. HTTP vs. HTTPS – Request/Response Cycle
- Browser opens a TCP connection to the server’s IP address (port 80 for HTTP, port 443 for HTTPS).
- HTTPS only: SSL/TLS handshake
- Server sends its digital certificate.
- Browser verifies the certificate against trusted Certificate Authorities.
- Both sides agree on a symmetric encryption key.
- Browser sends an HTTP request line (e.g.,
GET /index.html HTTP/1.1) followed by header fields such asHost,User‑Agent,Accept, andCookie. - Server replies with a status line (e.g.,
HTTP/1.1 200 OKorHTTP/1.1 404 Not Found) and response headers (Content‑Type,Cache‑Control,Set‑Cookie, etc.). - If the status is 200, the body contains the requested HTML, CSS, JavaScript, images, …
- The browser processes the response using the functions listed in Section 5.
7. Step‑by‑Step: How a Browser Retrieves a Web Page
'/%3E%3Cline%20x1%3D'300'%20y1%3D'60'%20x2%3D'460'%20y2%3D'60'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'560'%20y1%3D'60'%20x2%3D'560'%20y2%3D'120'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'560'%20y1%3D'140'%20x2%3D'460'%20y2%3D'140'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'340'%20y1%3D'140'%20x2%3D'240'%20y2%3D'140'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'180'%20y1%3D'140'%20x2%3D'80'%20y2%3D'140'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cdefs%3E%3Cmarker id='arrow' markerWidth='10' markerHeight='10' refX='0' refY='3' orient='auto'%3E%3Cpath d='M0,0 L0,6 L9,3 z' fill='%23000'/%3E%3C/marker%3E%3C/defs%3E%3C/svg%3E)
8. Cookies – Session vs. Persistent
- Session cookie: Stored only in memory; deleted when the browser is closed. Typical use – shopping‑cart identifier.
- Persistent cookie: Saved to disk with an expiry date; survives browser restarts. Typical use – “remember me” login or site preferences.
Example of a Set‑Cookie header sent by a server:
Set-Cookie: userId=abc123; Expires=Wed, 10 Jan 2027 12:00:00 GMT; Path=/; Secure; HttpOnly
Trace‑table practice (exam‑style):
| Step | Server Response Header | Result in Browser |
|---|---|---|
| 1 | Set‑Cookie: session=xyz; Path=/; HttpOnly | Session cookie stored in memory. |
| 2 | Set‑Cookie: theme=dark; Expires=Fri, 01 Feb 2026 00:00:00 GMT; Path=/ | Persistent cookie saved to disk. |
| 3 | (No Set‑Cookie header) | No change to stored cookies. |
When the user revisits the site, the browser automatically includes the stored cookies in the Cookie request header, e.g.:
Cookie: session=xyz; theme=dark
9. Caching – Why It Matters (and a Quick Flowchart)
- Reduces bandwidth consumption.
- Speeds up page loading by re‑using previously downloaded resources.
- Relies on HTTP headers such as
Cache‑Control,ExpiresandETagto decide freshness.
'/%3E%3Cline%20x1%3D'220'%20y1%3D'60'%20x2%3D'340'%20y2%3D'60'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'200'%20y1%3D'40'%20x2%3D'200'%20y2%3D'80'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cline%20x1%3D'340'%20y1%3D'40'%20x2%3D'340'%20y2%3D'80'%20stroke%3D'%23000'%20marker-end%3D'url(%23arrow)'/%3E%3Cdefs%3E%3Cmarker id='arrow' markerWidth='10' markerHeight='10' refX='0' refY='3' orient='auto'%3E%3Cpath d='M0,0 L0,6 L9,3 z' fill='%23000'/%3E%3C/marker%3E%3C/defs%3E%3C/svg%3E)
10. Security Features (linked to AO3)
- SSL/TLS validation: The browser checks the server’s certificate against a trusted list of Certificate Authorities. AO3 relevance: Students should evaluate why encrypted connections protect data confidentiality and integrity.
- Safe‑browsing warnings: Blacklists and heuristic analysis block known phishing or malware sites. AO3 relevance: Explain why such warnings reduce the risk of credential theft.
- Sandboxing: Each tab runs in an isolated process, preventing malicious script from accessing the local file system or other tabs. AO3 relevance: Justify sandboxing as a defence‑in‑depth measure.
- Mixed‑content blocking: Modern browsers refuse to load insecure (HTTP) resources on an HTTPS page, protecting against downgrade attacks.
11. Common Browser Features
- Tabs: Multiple pages displayed within a single window.
- Incognito / Private mode: No history, cookies or cached files are retained after the session ends.
- Extensions / Add‑ons: Optional tools such as ad‑blockers, password managers or language translators.
- Developer Tools: Inspect HTML/CSS, debug JavaScript, monitor network activity and view performance metrics.
Sidebar: Digital Currency (≈150 words)
Digital currency, also known as cryptocurrency, is a form of electronic money that uses cryptographic techniques to secure transactions and control the creation of new units. The most widely known example is Bitcoin, which operates on a public ledger called a blockchain. A blockchain is a chain of blocks, each containing a list of transactions; once a block is added, it cannot be altered without changing every subsequent block, making fraud extremely difficult.
In the context of the Internet, digital currencies enable peer‑to‑peer payments without a central bank or intermediary. They rely on public‑key cryptography: a user’s “public key” (the address) is shared openly, while the “private key” (known only to the owner) signs transactions to prove ownership. Although not part of the core web‑browser syllabus, understanding digital currency helps learners appreciate emerging web‑based services such as online wallets, smart contracts and decentralized applications (dApps).
Summary
A web browser is the gateway to the World‑Wide‑Web. It resolves URLs to IP addresses via DNS, establishes TCP or TLS connections, sends HTTP/HTTPS requests, interprets status codes, manages caches and cookies, renders HTML/CSS/JavaScript, and enforces security through SSL/TLS validation, safe‑browsing warnings and sandboxing. Mastery of these concepts satisfies the Cambridge IGCSE Computer Science requirements for explaining how information travels from a remote server to a user’s screen and for evaluating the security measures that protect that process.
Create an account or Login to take a Quiz
Log in to suggest improvements to this note.