Category-320: 密钥管理错误

  • A+
所属分类:CWE(弱点枚举)

Category-320: 密钥管理错误

ID: 320
Status: Draft

Summary

Weaknesses in this category are related to errors in the management of cryptographic keys.

Membership

ID NAME
CWE-321 使用硬编码的密码学密钥
CWE-322 未进行实体认证的密钥交换
CWE-323 在加密中重用Nonce与密钥对
CWE-324 使用已过期的密钥

Taxonomy Mappings

Mapped Taxonomy Name Node ID Fit Mapped Node Name
PLOVER Key Management Errors

Notes

Maintenance

This category should probably be split into multiple sub-categories.

文章来源于互联网:scap中文网

相关推荐: Category-937: OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

Category-937: OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities ID: 937 Status: Obsolete Summary Weakne…

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: