[eluser]Phil Sturgeon[/eluser]
Well 1.7.0 was released the same year as that book, so not much code has changed.
I think Tom may have just overlooked this option when writing that section. Either way, it is irrelevant as encrypted cookies are perfectly secure (if you have an encryption key!).