SAP Knowledge Base Article - Preview

3282955 - How to fix security weakness CWE-521: Weak Password Requirements - SAP PD


  • Security scanning tool may report weakness CWE-521: Weak Password Requirements
  • Description is:
    The product does not require that users should have strong passwords, which makes it easier for attackers to compromise user accounts.
    Authentication mechanisms often rely on a memorized secret (also known as a password) to provide an assertion of identity for a user of a system. It is therefore important that this password be of sufficient complexity and impractical for an adversary to guess. The specific requirements around how complex a password needs to be depends on the type of system being protected. Selecting the correct password requirements and enforcing them through implementation are critical to the overall success of the authentication mechanism. 



SAP PowerDesigner (PD) Web 16.7


SAP PowerDesigner 16.7


IA02, IA03, IA16, 521, CR#827519, CR827519, 827519 , KBA , BC-SYB-PD , PowerDesigner , Known Error

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.