Prohibit Stale Sessions in mobile apps

Mobile apps often store authentication information, credentials, tokens, or other artifacts to maintain state and improve the user experience. Whatever the reason, it’s prudent to take measures to protect this valuable information because stale sessions can also be reused and reclaimed by hackers and used in their attacks. And many times such reuse of sessions may go unnoticed for months or longer.  

Appdome detects and prohibits session reuse and reclaimed SessionID for stale TLS sessions, so that hackers cannot use them in attacks. 

What is Appdome Prohibit Stale Sessions? 

Appdome is a no-code mobile integration platform as a service (IPaaS) that enables developers and non-developers to add a wide variety of features, SDKs, and APIs to Android and iOS apps instantly. Using a simple ‘click to add’ user interface, Appdome allows anyone to easily enforce Appdome’s Prohibit Stale Sessions feature in any mobile app – instantly, no code or coding required.

There are no development or coding prerequisites to use Appdome. For example, there is no SDK, no libraries, or plug-ins to implement.

Prerequisites for using Prohibit Stale Sessions 

How to Prohibit Stale Sessions in iOS and Android apps

Whenever you add Appdome’s Trusted Session functionality to any mobile app, Appdome automatically enables Prohibit Stale Sessions by default.

appdome prohibit stale sessions feature no code

Upload a Mobile App to Your Account

Please follow these steps to add a mobile app to your Appdome account.
If you don’t have an Appdome account, click here to create an account.

From the “Build” tab, go to the Security menu.

  1. Click  Secure Communications to expend the bundle
  2. Click on the toggle to enable Trusted Session
  3. Click Build My App

The technology behind Build My App has two major elements – (1) a microservice architecture filled with 1000s of code sets needed for mobile integrations, and (2) an adaptive code generation engine that can recognize the development environment, frameworks and methods in each app and match the app to the relevant code-sets needed to add MicroVPN to the mobile app in seconds.

Congratulations! You now have a mobile app fully integrated with Prohibit Stale Sessions.

What to do After I Build My App?

After you successfully build an app, you need to sign the app in order to deploy it. You can also brand or customize an app on Appdome. Read this Knowledge Base article to learn what to do after you successfully build an app. It explains both optional steps and required steps.

That is it – Enjoy Appdome!

How Do I Learn More?

Or request a demo at any time.

For related content, check out this article on  MiTM attack prevention

Thank you!

Alan Bavosa

Have a question?

Ask an expert

PascalMaking your security project a success!