Breaked Axis Control

broken access control occurs when users can act outside of their intended permissions. In 20 21, owas published an up dated list where broken axis control jumped up from the fifth position to the number one spot. The purple box web sit team recommends some common best practices designed to reduce the probability that your code will have a broken access control. First, obfuscation as well as hope is not a plan. If zero trust is our stated strategy, and axis controls are one of the tactics we use to pursue that strategy, then a broken axis control is a failure in design and implementation.