ASVS Requirement 14.3.3

• Level: 2
• Chapter: V14 Data Protection
• Section: V14.3 Client-side Data Protection
• Source: 0x23-V14-Data-Protection.md

Description

Verify that data stored in browser storage (such as localStorage, sessionStorage, IndexedDB, or cookies) does not contain sensitive data, with the exception of session tokens.