Security Requirements for 03.05.04 Replay-Resistant Authentication

Authentication processes resist replay attacks if it is impractical to successfully authenticate by recording or replaying previous authentication messages. Replay-resistant techniques include protocols that use nonces or challenges, such as time synchronous or challenge-response one-time authenticators.

View CPRT 03.05.04
  1. 03.05.04

    Implement replay-resistant authentication mechanisms for access to privileged and non-privileged accounts.