Credential Hardening techniques modify system or network properties in order to protect system or network/domain credentials.
There are 5 countermeasure techniques in this category, Credential Hardening.
|Credential Hardening||D3-CH||Credential Hardening techniques modify system or network properties in order to protect system or network/domain credentials.|
|- Certificate Pinning||D3-CP||Persisting either a server's X509 certificate or their public key and comparing that to server’s presented identity to allow for greater client confidence in the remote server's identity for SSL connections.|
|- Multi-factor Authentication||D3-MFA||Requiring proof of two or more pieces of evidence in order to authenticate a user.|
|- One-time Password||D3-OTP||A one-time password is valid for only one user authentication.||OTP|
|- Strong Password Policy||D3-SPP||Modifying system configuration to increase password strength.|