This site has been deprecated in favor of https://attack.mitre.org and will remain in place until 11/1/22.
Application Developer Guidance
Jump to navigation
Jump to search
Application Developer Guidance | |
---|---|
Mitigation | |
ID | M0913 |
NIST SP 800-53 Rev. 4 | AT-3 |
Description
This mitigation describes any guidance or training given to developers of applications to avoid introducing security weaknesses that an adversary may be able to take advantage of.
Techniques Addressed by Mitigation
Name | Use |
---|---|
Valid Accounts | Ensure that applications and devices do not store sensitive data or credentials insecurely (e.g., plaintext credentials in code, published credentials in repositories, or credentials in public cloud storage).1 |