(Choose 2 answers)
A session-based system authenticates a user to a Web site to provide access to restricted resources. To increase security in this scenario, an authentication token should meet which of the following requirements?(Choose two).
A. It should identify returning users to the site.
B. It should be used as a replacement for a user's credentials.
C. It should always use a persistent cookie.
D. It should always use a non-persistent cookie.
E46
