You are designing an ASP.NET Web application.
Some Web application users prefer to turn off cookie support in their browsers.
You need to secure the Web application against session spoofing when cookieless sessions are used.
Which approach should you recommend?
A.
Use the Http Utility class
B.
Use Session ID regeneration
C.
Use SSL for the Web application
D.
Use a custom Session id Manager class