This course explains how software developers and testers can determine if their web applications are vulnerable to A07:2021 Identification and Authentication Failures, as defined by the Open Web Application Security Project (OWASP).
On successful completion of this course, learners should have the knowledge and skills required to:
- Define and identify the common types of identification and authentication errors
- Create and enact a testing plan for various password attacks
- Thoroughly test to ensure strong password policies, based on industry best practices, to achieve optimal password strength, proper storage, and secure processes