Safest way to keep users logged in?

Encryption. SSL? Do you host the website? You could make your own SSL version.