ASVS Requirement 7.3.1

Description

Verify that there is an inactivity timeout such that re-authentication is enforced according to risk analysis and documented security decisions.