A Token is a random number which, when presented to a server by a client application, allows the server to verify that the client is the same one with whom it communicated previously. Token's are used to maintain the Authentication state of a Login Session in otherwise-stateless protocols, such as HTTP / HTTPS.

Return to IT Security Concepts