Introduction to Broken Authentication¶
links: WS TOC - Broken Authentication - Index
Identification or Authentication Failures¶
Identification or Authentication Failures is listed as vulnerability number seven on the list of the OWASP Top 10 (2021). It was even ranked as second most common vulnerability previously. OWASP thinks that the 'downgrade' comes from better availability of frameworks concerning the authentication.
Risks¶
The risks involved by broken authentication include:
- Undermining authorization and accountability controls (due to identity theft)
- Privacy violation
- Identity Theft
links: WS TOC - Broken Authentication - Index