New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update: Credential_Stuffing_Prevention_Cheat_Sheet #1315
Labels
ACK_OBTAINED
Issue acknowledged from core team so work can be done to fix it.
UPDATE_CS
Issue about the update/refactoring of a existing cheat sheet.
Comments
SCFTW
added
ACK_WAITING
Issue waiting acknowledgement from core team before to start the work to fix it.
HELP_WANTED
Issue for which help is wanted to do the job.
UPDATE_CS
Issue about the update/refactoring of a existing cheat sheet.
labels
Feb 7, 2024
I like all of these ideas, PR!
|
@SCFTW awesome issue. Do you want to make a PR for this? |
mackowski
added
ACK_OBTAINED
Issue acknowledged from core team so work can be done to fix it.
and removed
ACK_WAITING
Issue waiting acknowledgement from core team before to start the work to fix it.
labels
Feb 18, 2024
I'm working on these and a few other minor updates to the cred stuffing CS. |
jmanico
pushed a commit
that referenced
this issue
Mar 20, 2024
* Update Credential_Stuffing_Prevention_Cheat_Sheet.md Added MFA CS link and Passkey statement * Update Credential_Stuffing_Prevention_Cheat_Sheet.md Added risk-driven MFA bullets and several content additions throughout * Update Credential_Stuffing_Prevention_Cheat_Sheet.md updated MFA section per reviewer comment and resolved linter detected formatting issue.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
ACK_OBTAINED
Issue acknowledged from core team so work can be done to fix it.
UPDATE_CS
Issue about the update/refactoring of a existing cheat sheet.
What is missing or needs to be updated?
A couple of suggestions for the Credential Stuffing cheat sheet:
How should this be resolved?
Changes suggested inline above. Could also mention FIDO UAF or U2F device bound software or hardware passkeys as well- not sure if this is getting too far into the weeds for a cheat sheet?
The text was updated successfully, but these errors were encountered: