Gestion des sessions

RFC 2109: HTTP State Management Mechanism
http://www.ietf.org/rfc/rfc2109.txt


Doos and don'ts of client authentication on the web
http://cookie.lcs.mit.edu/pubs/webauth:tr.ps