Application Security Guidance - Session Management

Hi, I am Ashish Popli and I work with the ACE Services Team.

There is a lot of security review guidance available that is technology or platform specific, but at the heart of a security review, there are some basic security principles that can be applied to any technology or platform. This series of blogs will be my attempt to highlight some of these principles under several key areas of application security. Today we look at session management - a critical design consideration for all web based applications.

Ashish Popli
Senior Consultant
ACE Services
apopli at microsoft dot com