Category-1017: 锁定计算机

admin 2021年11月11日20:20:47评论53 views字数 611阅读2分2秒阅读模式

Category-1017: 锁定计算机

ID: 1017
Status: Draft

Summary

Weaknesses in this category are related to the design and architecture of a system's lockout mechanism. Frequently these deal with scenarios that take effect in case of multiple failed attempts to access a given resource. The weaknesses in this category could lead to a degradation of access to system assets if they are not addressed when designing or implementing a secure architecture.

Membership

ID NAME
CWE-645 过度限制的账户封锁机制

References

REF-9 A Catalog of Security Architecture Weaknesses.
REF-10 Understanding Software Vulnerabilities Related to Architectural Security Tactics: An Empirical Investigation of Chromium, PHP and Thunderbird.

文章来源于互联网:scap中文网

  • 左青龙
  • 微信扫一扫
  • weinxin
  • 右白虎
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2021年11月11日20:20:47
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                   Category-1017: 锁定计算机https://cn-sec.com/archives/613550.html

发表评论

匿名网友 填写信息