ASVS Requirement 13.1.4

• Level: 3
• Chapter: V13 Configuration
• Section: V13.1 Configuration Documentation
• Source: 0x22-V13-Configuration.md

Description

Verify that the application's documentation defines the secrets that are critical for the security of the application and a schedule for rotating them, based on the organization's threat model and business requirements.