Cookies are stored as plaintext values that can be intercepted or retrieved from a user's device. There is still security in place though; these cookies aren't simply passed anywhere without encryption and security, allowing bad actors to easily steal them. A user still has an established HTTPS session with encryption in place before cookies are passed, so at least there's that. That still does not mean that the cookies are completely secure$.$There are a number of solutions that can be implemented. First, one could just eliminate the use of cookies and require authentication every time the user establishes a new connection. This would be really frustrating for end users though, so that may not be very viable. Another solution could be encrypting the session cookies themselves. The client and the server can have a private$/$public key pair and the use of the cookie would require decryption.In your response posts, think about future technologies and enhancements that can be incorporated into web browsing. How can the solutions suggested by your peers evolve into something more secure$?$