Which of the following should the security engineer recommend?

A web developer has implemented HTML5 optimizations into a legacy web application.

One of the modifications the web developer made was the following client side optimization:

localStorage.setItem(“session-cookie”, document.cookie);

Which of the following should the security engineer recommend?
A . SessionStorage should be used so authorized cookies expire after the session ends
B . Cookies should be marked as “secure” and “HttpOnly”
C . Cookies should be scoped to a relevant domain/path
D . Client-side cookies should be replaced by server-side mechanisms

Answer: C

Latest CAS-003 Dumps Valid Version with 509 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments