Guarantee uniqueness of emails

Summary

Systems using email accounts for user registration must guarantee the uniqueness of the emails. This is indicated in the RFC822 email address structure standard.

Description

Email addresses serve as a means of identifying and communicating with users. Each user's email address should be associated with a unique account to ensure that communication, notifications, and account-related information are directed to the correct individual.

Supported In

This requirement is verified in following services

Plan	Supported
Essential	🔴
Advanced	🟢

References

NIST 800-53-IA-2. Identification and authentication (organizational users)
PTES-3_4_1_5_2. Corporate - Infrastructure assets (email addresses)
FISMA-IA-2. Identification and authentication (organizational users)

Vulnerabilities

102. Email uniqueness not properly verified

free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.

Summary​

Description​

Supported In​

References​

Vulnerabilities​

Summary

Description

Supported In

References

Vulnerabilities