• Online, Self-Paced

In this course, you will learn how to mitigate the risks associated with A01:2021 Broken Access Control, as defined by the Open Web Application Security Project (OWASP).

Learning Objectives

On successful completion of this course, learners should have the knowledge and skills required to:

  • Define and identify broken access control
  • Identify and mitigate insecure direct object references and common methods used to exploit such vulnerabilities
  • Implement mitigation techniques against path traversal vulnerabilities, missing function level access control, and forced browsing using industry best practices

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.