Skip to Main Content
Secure Development for Mobile Apps
book

Secure Development for Mobile Apps

by J. D. Glaser
October 2014
Intermediate to advanced content levelIntermediate to advanced
472 pages
10h 44m
English
Auerbach Publications
Content preview from Secure Development for Mobile Apps
186
seCure develoPment For mobIle APPs
thedamage. isisonereason re-authenticate on privilege elevation is a best
practice. Re-authentication stops an attacker before they can change user data.
Enable HTTP Only and Secure Cookies via PHP Two other critical settings that help
prevent session ID hijacking are making sure that the cookie is only sent over SSL
and that cookies are only handled by the browser and sent in HTTP headers.
e first measure, ensuring that the cookie is only sent over HTTPS/SSL means
just that. If a user visits a public page over HTTP on the site, the session cookie will
not be sent. is prevents the cookie from being intercepted in the clear. is can be
checked by looking at the $_COOKIE array during an HTTP request. ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Developing with Web Standards

Developing with Web Standards

John Allsopp
Mobile Cloud Computing

Mobile Cloud Computing

Dijiang Huang, Huijun Wu

Publisher Resources

ISBN: 9781482209037