D3-ANCI
Authentication Cache Invalidation
Definition
Removing tokens or credentials from an authentication cache to prevent further user associated account accesses.
How it works
Applications can locally cache user authentication credentials for certain server connections. An application may attempt to use the cached credential for a connection. If the cached credentials exist then the user will not be typically prompted for new credentials.
Considerations
Are these cached credentials only on the local host? Can they be persisted to the remote server?
Examples
Windows Credential Management API
Artifact Relationships
This defensive technique relates to specific digital artifacts.