SAMMY works best on screens 1024px wide or larger.
NIST 800-53 v5
Browse NIST 800-53...
SC-23(1): Invalidate Session Identifiers at Logout
Invalidate Session Identifiers at Logout
SC-23(1): Invalidate Session Identifiers at Logout
Invalidate session identifiers upon user logout or other session termination.
Implementation
Not applicable - Not applicable
Planned - The implementation is planned
In progress - The implementation is currently in progress
Partially implemented - The control is partially implemented
Implemented - The control is fully implemented
Alternative implementation - There is an alternative implementation in place (e.g., shared responsibility or inherited implementation)
Description

Invalidating session identifiers at logout curtails the ability of adversaries to capture and continue to employ previously valid session IDs.