What is the recommended technique for preventing CSRF attacks in PHP form submissions?
-
A
Validate the HTTP Referer header on every request
-
B
Use HTTPS for all form submissions
-
C
Generate and validate unique per-session CSRF tokens in every form
-
D
Require users to re-authenticate before each form submission