%% You should probably cite draft-ietf-httpbis-rfc6265bis-15 instead of this revision. @techreport{ietf-httpbis-rfc6265bis-03, number = {draft-ietf-httpbis-rfc6265bis-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-httpbis-rfc6265bis/03/}, author = {Adam Barth and Mike West}, title = {{Cookies: HTTP State Management Mechanism}}, pagetotal = 50, year = 2019, month = apr, day = 27, abstract = {This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 6265.}, }