---

@misc{rfc6265, series = {Request for Comments}, number = 6265, howpublished = {RFC 6265}, publisher = {RFC Editor}, doi = {10.17487/RFC6265}, url = {https://www.rfc-editor.org/info/rfc6265}, author = {Adam Barth}, title = {{HTTP State Management Mechanism}}, pagetotal = 37, year = 2011, month = apr, abstract = {This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 2965. {[}STANDARDS-TRACK{]}}, }

---