Browsers Versus Tokens

• Web browsers are stateless; each interaction must be authenticated separately.

• Basic web authentication sends the same string for each request.

• But tokens generally give a different answer each time, to prevent replays...

Previous slide

Next slide

Back to first slide

View graphic version