Question 132:
Which of the following session management techniques will help to prevent a session identifier from being stolen via an XSS attack?
Answer options:
A. Ensuring the session identifier length is sufficient B. Creating proper session identifier entropy C. Applying a secure attribute on session cookies D. Utilizing transport layer encryption on all requests E. Implementing session cookies with the HttpOnly flag