device-bound-session-credentials

Here are 3 public repositories matching this topic...

SulimanAbdulrazzaq / dbsc-toolkit

Device Bound Session Credentials (DBSC) for Node.js — middleware that binds session cookies to a hardware TPM key to stop cookie theft, with a Web Crypto polyfill for Firefox & Safari.

nodejs express typescript authentication nextjs chromium session-management web-security tpm fastify hono secure-enclave webauthn dbsc cookie-theft session-security cookie-security device-bound-session-credentials

Updated Jun 29, 2026
TypeScript

snowmerak / dbsc-go

Star

An experimental Go implementation of the Device Bound Session Credentials (DBSC) protocol for securing web sessions against cookie theft.

go fiber dbsc go-fiber device-bound-session-credentials

Updated Mar 7, 2026
Go

Spomky-Labs / dbsc-bundle

Star

Device Bound Session Credentials (DBSC) for Symfony: protect sessions from cookie theft with hardware-bound keys.

security symfony symfony-bundle session tpm webauthn dbsc cookie-theft device-bound-session-credentials

Updated Jun 6, 2026
PHP

Improve this page

Add a description, image, and links to the device-bound-session-credentials topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the device-bound-session-credentials topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly