xauth is the more secure X11 security program (the other being xhost), with support for multiple authorization methods. The default is MIT-MAGIC-COOKIE-1, which creates a false sense of security in many instances, as the cookies are sent raw and thus sniffable. Really paranoid folk use ssh.