Try to set the Response.Cookies ["ASP.NET_SessionID"].Secure = true
in the Session_Start of the global.asax instead of master page.
If the answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.