V8.2 — Client-side Data Protection
Client-side Data Protection: 3 L3 requirement(s). V8.2.1: Verify the application sets sufficient anti-caching headers so that sensitive data is not cached in modern browsers. V8.2.2: Verify that data stored in browser storage (such as localStorage, sessionStorage, IndexedDB, or cookies) does not contai... V8.2.3: Verify that authenticated data is cleared from client storage, such as the browser DOM, after the client or session is t...
| Property | Value |
|---|---|
| Section | V8.2 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-HARD-05 | Browser Security Controls |
Source: OWASP Application Security Verification Standard 4.0.3