I have used setState (below) to store data in session. Is it always unsafe way to save information? Can it be made safe?

Yii::app()->user->setState('sum', $this->sum);

Is it safe way to use setState by configuring in main.php like below?

'components' => array(




I found this from here:

I also turned allowAutoLogin false.

Is the information still as plain text in cookies?