Is encrypting a query parameter within a URI a security best practice?
Assumption a customer is sitting in a public area connected to a public wifi. A threat actor can access the customer’s browser and read all Javascript variables.
Step 1. example.com server sends the following information to trustworthy.ext…