Authentication Cheat Sheet

= Introduction =

Authentication is ....

Session Management is ...

For more information on Authentication, please see the OWASP Guide_to_Authentication) page.

Authentication General Guidelines
= Password Strength = = Password Recovery = = Two Factor = = Password Transmission = = Login Failure & Lockout =

Session Management General Guidelines
= Session ID Transport (HTTP & SSL) = = Session ID's = = Session validation & invalidation = = Caching & Privacy = = Cookie Security =

= References =

= Authors and Primary Editors =

Dave Wichers - dave.wichers@aspectsecurity.com

[[Category:OWASP_Top_Ten_P