Why should the Secure attribute be set on any session cookie sent to an Android application?

A.
This attribute instructs the device to store the cookie in an encrypted region of the device
storage.

B.
This attribute requests the client to only send the cookie over an HTTPS connection.

C.
This attribute encrypts the cookie so that if it is compromised, it cannot be used.

D.
This attribute ensures that session cookies are generated in a random fashion.

Explanation: