ASVS Requirement 7.4.3

• Level: 2
• Chapter: V7 Session Management
• Section: V7.4 Session Termination
• Source: 0x16-V7-Session-Management.md

Description

Verify that the application gives the option to terminate all other active sessions after a successful change or removal of any authentication factor (including password change via reset or recovery and, if present, an MFA settings update).