Application Developer Guidance

This mitigation describes any guidance or training given to developers of applications to avoid introducing security weaknesses that an adversary may be able to take advantage of.

Techniques Addressed by Mitigation

Domain ID Name Use
Enterprise VT0005 Valid Accounts

Ensure that applications do not store sensitive data or credentials insecurely. (e.g. plaintext credentials in code, published credentials in repositories, or credentials in public cloud storage).

Attachments

ID
VM0010
Version
1.0

Created: 02 December 2020

Last Modified: 02 December 2020