tag:blogger.com,1999:blog-8976089095047007543.post2006455128255596656..comments2023-04-02T06:52:05.507-04:00Comments on Off-the-Wall Security: Signs of Broken Authentication (Part 3)Kevin W. Wallhttp://www.blogger.com/profile/07020090691046917645noreply@blogger.comBlogger1125tag:blogger.com,1999:blog-8976089095047007543.post-71040723700468914432011-03-20T15:01:35.746-04:002011-03-20T15:01:35.746-04:00If you are implementing this control yourself, you...If you are implementing this control yourself, you should a sliding window pattern. The user is allowed N attempts over a period of T minutes. For example, a user can attempt 5 authentications within a 10 minute window. This prevents user from getting burned today after one one attempt when they failed 4 times yesterday.Unknownhttps://www.blogger.com/profile/02832027461047597989noreply@blogger.com