This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Cornucopia - Ecommerce Website - CR 9

From OWASP
Revision as of 15:14, 21 January 2016 by Dariodf (talk | contribs) (Created page with "{{DISPLAYTITLE:<span style="padding:2px 5px 0px 5px;color:white;background:#a395ca;">Cornucopia - Ecommerce Website - CR 9</span>}} File:Cornucopia_-_Ecommerce_Website_CR_9....")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Cornucopia - Ecommerce Website CR 9.png

Suit: Cryptography

Card/Value: 9

Description:

Andy can bypass random number generation, random GUID generation, hashing and encryption functions because they have been self-built and/or are weak.

Technical Note:

NB: The key concept for this card is use of weak algorithms/functions, especially self-built ones.

References:

OWASP SCP OWASP ASVS OWASP AppSensor CAPEC SAFECODE
60 7.6 - 97 14
104 7.7 21
105 7.8 29
32
33



« Previous Card | Cryptography | Next Card »