Moreover, cookies on the web-site served by way of HTTPS need to have the secure attribute enabled. On a site that has sensitive info on it, the user plus the session will get exposed each time that site is accessed with HTTP in place of HTTPS.[13] Technological[edit]With many thanks for contributions and responses to all reviewers and contributors