SIMID icon indicating copy to clipboard operation
SIMID copied to clipboard
verified publisher icon InteractiveAdvertisingBureau

specify that session ID should be cryptographically safe

Open ryanthompson591 opened this issue 6 years ago • 0 comments

There is a chance that if session ID's are chosen poorly they can be vulnerable to brute force attacks. We should use window.crypto in the sample code and we should specify in the spec that we should use crypto safe randomly generated numbers.

ryanthompson591 avatar Nov 14 '19 16:11 ryanthompson591