Understanding Best Practices for User Authentication and Account Validation
Lets look at some best practices for user authentication. These practices come from what we’ve seen work and not work during our audits. The best practices are as follows:
No password caching
Minimum password length
Validate email addresses
Multi-factor authentication
Get Bulletproof Android™: Practical Advice for Building Secure Apps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.