ASVS Requirement 6.2.4

• Level: 1
• Chapter: V6 Authentication
• Section: V6.2 Password Security
• Source: 0x15-V6-Authentication.md

Description

Verify that passwords submitted during account registration or password change are checked against an available set of, at least, the top 3000 passwords which match the application's password policy, e.g. minimum length.