Studied by 0 people
Looks like no one added any tags here yet for you.
HTTP
A stateless protocol where requests don't retain information about previous requests.
Stateless Protocol
A type of protocol where each request from a client to server is treated as an independent transaction.
Session ID
A unique identifier used to link data about a user to their requests, essential for maintaining state.
Authentication
The process of verifying if a client is logged in, necessary for maintaining user sessions.
Persistent Data
Data that is stored to maintain information about a client across different requests.
Cookies
Text files stored by the browser that can hold session IDs and other user data.
In-memory Session Store
A storage method for session data that does not persist after server shutdown.
Stealing Sessions
A security risk where unauthorized users gain access to a user’s session by obtaining the session ID.
Brute Force Guessing
A method of attempting to gain unauthorized access by systematically guessing session IDs.
Secret Form Input
An HTML input type hidden from users that can potentially store session IDs, but poses security risks.
Note 
Flashcard (80)