Skip to content

Commit

Permalink
Remove UUID req to resolve #2396
Browse files Browse the repository at this point in the history
  • Loading branch information
tghosth authored Dec 5, 2024
1 parent 697d2e2 commit bfd2b80
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions 5.0/en/0x14-V6-Cryptography.md
Original file line number Diff line number Diff line change
Expand Up @@ -62,8 +62,8 @@ Cryptographically secure Pseudo-random Number Generation (CSPRNG) is incredibly

| # | Description | L1 | L2 | L3 | CWE |
| :---: | :--- | :---: | :---: | :---: | :---: |
| **6.3.1** | [GRAMMAR, LEVEL L2 > L1] Verify that all random numbers and strings which are intended to be non-guessable must be generated using a cryptographically-secure pseudo-random number generator (CSPRNG) and have at least 128 bits of entropy. |||| 338 |
| **6.3.2** | [MODIFIED] Verify that UUIDs are created with an implementation of the UUID v4 or v7 algorithms which utilizes a cryptographically-secure pseudo-random number generator (CSPRNG). | | || 338 |
| **6.3.1** | [GRAMMAR, LEVEL L2 > L1] Verify that all random numbers and strings which are intended to be non-guessable must be generated using a cryptographically-secure pseudo-random number generator (CSPRNG) and have at least 128 bits of entropy. Note that UUIDs do not respect this condition. |||| 338 |
| **6.3.2** | [DELETED, DUPLICATE OF 6.3.1] | | | | |
| **6.3.3** | [GRAMMAR, LEVEL L3 > L1] Verify that random number generation works properly under heavy system load, or that the system degrades gracefully. |||| 338 |

## V6.4 Secret Management
Expand Down

0 comments on commit bfd2b80

Please sign in to comment.