1. First enter the following code in the Console1
Document.cookie = "Name=ex;expires=60*24*7;secure=true";
Then, with resources open, you can see that the corresponding fields have been recorded in the cookie
2. The same operation in the Console2, then to look at the HTTP protocol under the Baidu page of resources, you will find that the name field did not upload to the server
3. What if I set the secure to false?
This article Baidu as an example, set to false result is no matter which agreement you under the Baidu page set cookies, then on both sides of the Baidu page cookie can see the field.
The implementation of a cookie across the protocol, but at the same time there is a certain probability of the risk of eavesdropping.