ASVS Requirement 6.3.5

• Level: 3
• Chapter: V6 Authentication
• Section: V6.3 General Authentication Security
• Source: 0x15-V6-Authentication.md

Description

Verify that users are notified of suspicious authentication attempts (successful or unsuccessful). This may include authentication attempts from an unusual location or client, partially successful authentication (only one of multiple factors), an authentication attempt after a long period of inactivity or a successful authentication after several unsuccessful attempts.