This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Testing Identity Management
From OWASP
Revision as of 17:07, 7 March 2014 by Davide Danelon (talk | contribs)
This article is part of the new OWASP Testing Guide v4.
Back to the OWASP Testing Guide v4 ToC: https://www.owasp.org/index.php/OWASP_Testing_Guide_v4_Table_of_Contents Back to the OWASP Testing Guide Project: https://www.owasp.org/index.php/OWASP_Testing_Project
4.4 Testing for Identity Management
Testing for Identity Management include the following articles:
4.4.1 Test Role Definitions (OTG-IDENT-001)
4.4.2 Test User Registration Process (OTG-IDENT-002)
4.4.3 Test Account Provisioning Process (OTG-IDENT-003)
4.4.4 Testing for Account Enumeration and Guessable User Account (OTG-IDENT-004)
4.4.5 Testing for Weak or unenforced username policy (OTG-IDENT-005)