🧷

Session Management

Security

Authentication Authorization Session Hijacking Security Headers

Lifecycle control of authentication sessions and tokens.

Definition

Session management covers issuance, storage, rotation, expiration, and revocation of session identifiers (cookies/tokens), plus protections against theft and replay.

In plain English Lifecycle control of authentication sessions and tokens.

Why this matters

Why it matters: Compromised sessions can bypass passwords and MFA, enabling unauthorized access.

Example

Example: Short-lived tokens, secure cookie flags, and server-side session invalidation.

Session Management

Definition

Why this matters

Example

Accessibility Settings

Text Size

Theme

Contrast Level

Language & Content

Need help with a term? Open the glossary