V2.1 — Password Security
Password Security: 12 L3 requirement(s). V2.1.1: Verify that user set passwords are at least 12 characters in length (after multiple spaces are combined). (C6) V2.1.2: Verify that passwords of at least 64 characters are permitted, and that passwords of more than 128 characters are denied... V2.1.3: Verify that password truncation is not performed. However, consecutive multiple spaces may be replaced by a single space... ... and 9 more.
| Property | Value |
|---|---|
| Section | V2.1 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-ARCH-01 | Platform Architecture Non-Applicability Register |
Source: OWASP Application Security Verification Standard 4.0.3