How?
Login credentials validated against access list
browser gets a cookie holding a session id
session is valid until
log out or
time out via inactivity
SSL
limit session keys leaking
encrypt data
Previous slide
Next slide
Back to first slide
View graphic version