nswering is
In a session-based system that verifies a user for a website to grant access to restricted resources, what
criteria should an authentication token fulfill to enhance security? (Choose two.)
A. It should identify returning users to the site.
B. It should be public information.
C. It should always use a persistent cookie.
D. It should always use a non-persistent cookie.
