Q: Is an application required to generate a new session after authentication?

A Mandatory if the application is deployed on multiple application servers.
B Required
C Not required

Share this MCQ

Answer: B

Explanation:

Correct option:
Required

Explanation:
After authentication, it is generally required to generate a new session for the user. This ensures that the user has a unique session to track their interactions with the application and maintain a secure environment. If the application is deployed across multiple servers (e.g., in a load-balanced environment), managing sessions properly becomes even more critical to ensure consistency and security. Without a new session, it could lead to security risks like session hijacking or session fixation.

Identification, Authentication and Authorization

Share Above MCQ

‹ Previous Next ›

Write your comment

Learn More MCQ Questions from Authentication Identification, Authentication and Authorization

Q: Is an application required to generate a new session after authentication?

Report Question