ASVS Requirement 4.4.4

• Level: 2
• Chapter: V4 API and Web Service
• Section: V4.4 WebSocket
• Source: 0x13-V4-API-and-Web-Service.md

Description

Verify that dedicated WebSocket session management tokens are initially obtained or validated through the previously authenticated HTTPS session when transitioning an existing HTTPS session to a WebSocket channel.