V3.1 — Fundamental Session Management Security
Fundamental Session Management Security: 1 L3 requirement(s). V3.1.1: Verify the application never reveals session tokens in URL parameters.
| Property | Value |
|---|---|
| Section | V3.1 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-AUTH-02 | JWT Bearer Token Session Management |
Source: OWASP Application Security Verification Standard 4.0.3