Verify that only session ids generated by the application framework are
recognized as active by the application.
+ \begin{result}
+ Since the session ids come directly from \PHP{}'s session management functionality, only ids generated by \PHP{} will be accepted by the application.