User talk:Manjit84

From OWASP
Jump to: navigation, search

Hi I am a Java users, I just want to know what type of sessions are the most secure to use when designing web pages??? Please help??

You should use the standard JSESSIONID over SSL. You can read more about session management and various session related attacks in the OWASP Guide Project and the OWASP Honeycomb Project. Ask specific questions to the OWASP Java Project. Jeff Williams 17:11, 11 September 2006 (EDT)