What is Broken Authentication?
User authentication on the web typically involves all aspects of handling user authentication, such as user ID’s and passwords, included in various session managements. As such, all known web servers, application servers, and web application environments are susceptible to Broken Authentication or walk-by attacks. Sensitive information can be compromised by flawed credential management functions, including password change, forgot my password, remember my password, account update, and other related functions.
What we offer.
By creating strong custom session tokens we will protect your site throughout its lifecycle. In doing so, it will keep track of the stream of requests from each user. If the session tokens are not properly protected, an attacker can hijack an active session and assume the identity of a user. Listed are the areas of interest to be protected.
For more information on developing custom session tokens for your business and protecting user authentication please contact us.
© 2012 Toronto Professional services LTD. All rights reserved