Logout management refers to the process of having secure session termination controls that governs interactions between a web-based application and users.
When user authentication and session management is not correctly configured, attackers may be able to compromise passwords, session tokens or keys to gain access to users accounts and assume their identities. Having Logout management processes for secure session termination reduces the attack surface for Cross Site Scripting (XSS) and Cross Site Request Forgery (XSRF).