Authentication is a mission-critical component of most applications, making it a high-value target for attackers. According to the Open Web Application Security Project (OWASP), broken authentication, or the improper and insecure implementation of authentication, is the second-most critical web application security risk.
Stage: Requirements Building