Skip to content

Introduction to Broken Authentication

links: WS TOC - Broken Authentication - Index


Identification or Authentication Failures

Identification or Authentication Failures is listed as vulnerability number seven on the list of the OWASP Top 10 (2021). It was even ranked as second most common vulnerability previously. OWASP thinks that the 'downgrade' comes from better availability of frameworks concerning the authentication.

Risks

The risks involved by broken authentication include:

  • Undermining authorization and accountability controls (due to identity theft)
  • Privacy violation
  • Identity Theft

links: WS TOC - Broken Authentication - Index