Hypertext transfer protocol secure
Intrusion detection system (IDS)
Hyptertext transfer protocol cookie
Security information and event management (SIEM)
Internet protocol security (IPsec)
- Use HTTPS.
- Use long and randomly generated session keys.
- Use defense in depth.
- Set the HttpOnly cookie.
- Encrypt the data in transit between the user and the web server.
- Regenerate session IDs upon new log ins for users.
- Use firewalls.