Cyber Defence Series: Collection of Authentication Controls and Countermeasures

Authored by Simon Moffatt
on March 7, 2022
This image has an empty alt attribute; its file name is cpIyQ5AgpOquJfixKFjsvLF3ySKVi9JYmPVqZodzTAQljU6hZt5xn9p64F74W1AmOUDNfk5LOaIEzRi5as4aaZZf9JLK_9Alb_-OtWNvRlHDxmTovgxkamPnvkXzD9q5JpHJy-fl
Last Updated07 March 2022
Authorsimonm@thecyberhut.com

A selection of curated links relating to user login and authentication security controls and threat counter measures:

CIS Account Management

Gitlab Identity & Authentication Controls

Configure Microsoft Azure for NIST Authentication Assurance Levels (AAL)

NIST 800-63b Digital Identity Guidelines Authentication & Lifecycle Management

Mitre D3fend Framework Credential Hardening

OWASP Authentication Cheat Sheet

OWASP Forgotten Password Cheat Sheet

OWASP Password Storage Cheat Sheet

OWASP Session Management Cheat Sheet

OWASP Credential Stuffing Prevention Cheat Sheet

UK DWP Authentication Controls Document

UK NCSC Cloud Security Guidance – Identity and Authentication

UK NCSC Password Administration

For additions or corrections please comment or contact us.

Categories:

Opinion

Tags:

No Tag

Signup for New Content Updates

Registered in England & Wales as TCH Research Ltd 13188456.

Registered Office: 7 Christie Way, Christie Fields, Manchester, M21 7QY, UK

Email: info@thecyberhut.com

© 2021 - 2023 The Cyber Hut.