Tagged in

Sessions

The White Hat ElePHPant
The White Hat ElePHPant
PHP Articles, Tutorials, Opnions and occasional rantings by Galvão
More information
Followers
98
Elsewhere
More, on Medium

A look into sessions and security

“Final” Part: Eternal sessions of the clueless user

In the fourth article of this series we talked about how to use a score-based approach to minimize false occurrences. Now it’s time to talk about… time.


A look into sessions and security

Part #3: The score approach

In the third article I’ve reached the conclusion that the most important concepts when thinking about secure sessions are Coherence and Validity. I’ve also touched a very delicate point when dealing…


A look into sessions and security

Part #2: Storage, Access and Meta Data

In my second article we’ve seen how to set up a session in a way that improves it’s security. We’ll now take a look at a few issues about access, storage and meta data.


A look into sessions and security

Part #0: The concept

Index

Part #0: The concept (You’re here!)
Part #1: The setup

Part#2: Storage, Access and Meta Data
Part #3: The Score approach
“Final” Part: Eternal sessions of the clueless user