NIST-800-53-AC-11 1

Session Lock | Pattern-Hiding Displays

Access Control Policies for 18F

Every user interaction with the cloud.gov APIs requires a valid token. If a user session is locked no cloud.gov actions are allowed.

Covered By:

User Account and Authentication (UAA) Server

The Cloud.gov login page hides user passwords using asterisks, the Cloud Foundry along with the bosh cli also obfuscate user passwords. Covered By:

results matching ""

    No results matching ""