ASVS Requirement 7.5.3

• Level: 3
• Chapter: V7 Session Management
• Section: V7.5 Defenses Against Session Abuse
• Source: 0x16-V7-Session-Management.md

Description

Verify that the application requires further authentication with at least one factor or secondary verification before performing highly sensitive transactions or operations.