Which of the below statements are correct

The domain attribute on cookies can be set to the top$-$level domain to ensure maximum compatibility with all browsers without affecting the risk of XSS attacks.

The use of HTTPS encryption provides complete protection against Cross$-$Site Scripting attacks.

The use of VPNs and proxy servers can make it more difficult for websites to fingerprint users.

HTTP Strict Transport Security $($HSTS$)$ is a mechanism that forces the browser to only communicate with a website over HTTPS$.$