ASVS Requirement 7.6.1

• Level: 2
• Chapter: V7 Session Management
• Section: V7.6 Federated Re-authentication
• Source: 0x16-V7-Session-Management.md

Description

Verify that session lifetime and termination between Relying Parties (RPs) and Identity Providers (IdPs) behave as documented, requiring re-authentication as necessary such as when the maximum time between IdP authentication events is reached.