Category-320: 密钥管理错误
ID: 320 Status: Draft
Summary
Weaknesses in this category are related to errors in the management of cryptographic keys.
Membership
| ID | NAME |
|---|---|
| CWE-321 | 使用硬编码的密码学密钥 |
| CWE-322 | 未进行实体认证的密钥交换 |
| CWE-323 | 在加密中重用Nonce与密钥对 |
| CWE-324 | 使用已过期的密钥 |
Taxonomy Mappings
| Mapped Taxonomy Name | Node ID | Fit | Mapped Node Name |
|---|---|---|---|
| PLOVER | Key Management Errors |
Notes
Maintenance
This category should probably be split into multiple sub-categories.