Return to list of success criteria

2.2.5 Re-authenticating [Level AAA]

Description

Sufficient Techniques for 2.2.5 - Re-authenticating

Note: Other techniques may also be sufficient if they meet the success criterion.

Providing options to continue without loss of data using one of the following techniques:
- G105: Saving data so that it can be used after a user re-authenticates
- G181: Encoding user data as hidden or encrypted data in a re-authorization page

Note: Refer to Techniques for Addressing Success Criterion 2.2.1 for techniques related to providing notifications about time limits.

Sufficent Techniques

Advisory Techniques

Failures

Failures for SC 2.2.5 - Re-authenticating

F12: Failure of Success Criterion 2.2.5 due to having a session time limit without a mechanism for saving user's input and re-establishing that information upon re-authentication

Notes