Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
25 Cards in this Set
- Front
- Back
¿QUE ES SALT? ¿CUAL ES LA MEJOR PRACTICA PARA SU USO? |
Regardless of which algorithm you choose for password storage, be sure |
|
|
This also radically increases the size of the rainbow table that an attacker |
|
|
Whenever a user creates or changes his or her password, create a |
|
|
P45 |
|
|
P45 |
|
|
If possible, do not support the forgot password workflow as part of your |
|
|
If you must have an automated forgot |
|
|
Good security questions must be memorable, consistent, nearly universal, and safe. For more on choosing good security questions go here: https://www.owasp.org/index.php/Choosing_and_ |
|
|
Any time your error messages |
|
|
1. Many secure |
|
|
1. Any time your error messages |
|
|
USERNAME HARVESTING |
|
|
Once an attacker knows a valid username, he can attempt a brute force |
|
|
ACCOUNT LOCKOUT |
|
|
P48, P49 |
|
|
A reverse |
|
|
P49 |
|
|
MULTIFACTOR AUTHENTICATION |
|
|
Multi-factor, or |
|
|
Multi-factor authentication reduces the impact of password theft, |
|
|
First of all, who is storing a copy of your multi-factor token generator seeds? |
|
|
EMAIL (WORST) |
|
|
P51 |
|
|
P52 |
|
|
P54 |