ASVS Requirement 15.1.3

• Level: 2
• Chapter: V15 Secure Coding and Architecture
• Section: V15.1 Secure Coding and Architecture Documentation
• Source: 0x24-V15-Secure-Coding-and-Architecture.md

Description

Verify that the application documentation identifies functionality which is time-consuming or resource-demanding. This must include how to prevent a loss of availability due to overusing this functionality and how to avoid a situation where building a response takes longer than the consumer's timeout. Potential defenses may include asynchronous processing, using queues, and limiting parallel processes per user and per application.