Practice free →
HomeBCA Cyber SecuritycybersecurityWeb Security — OWASP › Which OWASP 2021 category covers MISSING ENCRYPT…

Which OWASP 2021 category covers MISSING ENCRYPTION, weak crypto algorithms, and hardcoded secrets?

AA01: Broken Access Control
BA02: Cryptographic Failures
CA04: Insecure Design
DA09: Logging Failures
Answer & Solution
Correct answer: B. A02: Cryptographic Failures
1. A02: CRYPTOGRAPHIC FAILURES (renamed from 'Sensitive Data Exposure' in 2017) — covers failures to protect data at rest and in transit. 2. Common issues: • Transmitting credit cards / passwords over HTTP • Using deprecated algorithms: MD5, SHA-1, DES • Hardcoded encryption keys in source code • Using ECB mode for block ciphers • Weak random number generators for crypto 3. MITIGATION: use TLS 1.2+ everywhere, AES-256-GCM for symmetric encryption, modern hash functions (SHA-256+), key management via dedicated services (AWS KMS, HashiCorp Vault). _Source: OWASP Top 10 2021 — A02: Cryptographic Failures._
Solve this in the app — BCA Cyber Security practice & 24k+ MCQs →
Related questions