Preventing Authentication Vulnerabilities
Flashcard
•
Computers
•
University
•
Practice Problem
•
Hard
Abood Oc
FREE Resource
Student preview
10 questions
Show all answers
1.
FLASHCARD QUESTION
Front
What are the important techniques used to prevent authentication attacks?
Back
1. Secure handling of user credentials 2. Avoiding trust in users 3. Preventing username enumeration 4. Preventing password brute-forcing 5. Implementing proper MFA 6. Additional prevention techniques.
2.
FLASHCARD QUESTION
Front
What is the importance of auditing authentication code?
Back
Auditing authentication code is crucial to identify and fix logic flaws that can lead to vulnerabilities.
3.
FLASHCARD QUESTION
Front
What should be avoided in the handling of user credentials?
Back
1. Tokens containing user credentials 2. Disclosure of usernames and emails on public pages 3. Sending sensitive data over unencrypted connections.
4.
FLASHCARD QUESTION
Front
What is the recommended approach for password policies according to NIST 800-63-b?
Back
1. Allow long passphrases with spaces 2. Avoid unnecessary forced password changes.
5.
FLASHCARD QUESTION
Front
How can username enumeration be prevented?
Back
By using identical generic error messages for incorrect credentials and ensuring consistent HTTP status codes.
6.
FLASHCARD QUESTION
Front
What is a measure to prevent password brute-forcing?
Back
Implementing strict IP-based rate limiting and using CAPTCHA after a certain number of failed attempts.
7.
FLASHCARD QUESTION
Front
What is the risk associated with SMS-based 2FA?
Back
The risk of SIM swapping or message interception.
Access all questions and much more by creating a free account
Create resources
Host any resource
Get auto-graded reports
Continue with Google
Continue with Email
Continue with Classlink
Continue with Clever
or continue with
Microsoft
%20(1).png)
Apple
Others
Already have an account?
