Cryptographic Failures
detect, prioritise, remediate

What are cryptographic failures?

Cryptographic failures is the OWASP Top 10 category that covers every situation in which an application either fails to apply cryptography where it is required or applies it badly enough that the protection is illusory. OWASP renamed and reframed the category as A02:2021 (it was previously A03:2017 Sensitive Data Exposure) to push the discussion upstream from the symptom (data leaks) to the root cause (the cryptographic control did not exist, was wrongly chosen, was wrongly configured, or was wrongly operated). The canonical parent CWE is CWE-310 (Cryptographic Issues), with the OWASP A02 mapping spanning CWE-311 (missing encryption of sensitive data), CWE-319 (cleartext transmission), CWE-326 (inadequate encryption strength), CWE-327 (broken or risky cryptographic algorithm), CWE-328 (use of weak hash), CWE-330 (insecure randomness), CWE-331 (insufficient entropy), CWE-347 (improper verification of cryptographic signature), CWE-759 (use of one-way hash without a salt), CWE-915 (improper restriction of writable attributes), and CWE-916 (use of password hash with insufficient computational effort).

The category is a parent, not a single bug. A finding falls inside A02:2021 when sensitive data is sent or stored without encryption, when the algorithm chosen is deprecated (MD5, SHA1, DES, 3DES, RC4), when the algorithm is correct but the mode is broken (AES in ECB mode), when initialisation vectors are predictable or reused, when key sizes are below the modern threshold for the algorithm, when keys are hardcoded in source code or shipped in configuration files, when TLS allows downgrade to deprecated versions, when certificates are self-signed in production or missing chain validation, when password hashes use generic SHA without per-account salts or use insufficient work factor, when random numbers used as session tokens or password-reset tokens come from a non-cryptographic source, when signature verification is wrongly implemented, or when key custody, rotation, and revocation are not operated as a structured discipline.

A02:2021 is mechanistically broader than the per-finding entries it produces. The category is the root, and the entries you usually see on an engagement record are the specific findings underneath it: weak cryptography for the algorithm and mode choices, TLS and SSL misconfiguration for the transport layer, sensitive data exposure for the disclosure symptoms, insecure randomness for the RNG choices, and JWT vulnerabilities for token signing failures. SecPortal records both shapes on the engagement record through external scanning, authenticated scanning, and code scanning, with the broader programme work landing through findings management so the cryptographic backlog and the per-finding result share one canonical record.

Where cryptographic failures live in the stack

A02 reaches across every layer of a production system, and a programme that scans only one layer surfaces only one slice of the category. The six layers below carry distinct cryptographic decisions, each with its own scan window, advisory source, and remediation pattern.

How A02 surfaces in production

OWASP names A02 as a category because the same risk shape arrives through several distinct failure modes. The four patterns below are the most common entry points for an A02 finding on an enterprise engagement record.

Common causes

How to detect it

Detection is layered. Automated scanning surfaces the symptoms a tool can see (a weak TLS cipher, a deprecated hash in source, a JWT signed with the wrong algorithm), and design-stage review surfaces the gaps a scanner cannot see (a missing encryption requirement, a key custody story that nobody owns). A defensible A02 detection posture runs both halves and lands findings on a record that distinguishes a per-endpoint cryptographic finding from a programme-level governance gap.

How to fix it

How SecPortal records and tracks A02 findings

SecPortal is not a key management service, does not host an HSM, does not generate or rotate cryptographic material on your behalf, and does not federate against a vault. It is the workspace where every A02 finding lands on the engagement record alongside source-level findings, external attack-surface findings, and authenticated DAST findings so severity, ownership, evidence, fix, and retest stay on one canonical record per service. The flow for an A02 finding looks like this on the platform.

What SecPortal does not do

Honesty on capability matters when the topic is enterprise cryptography. SecPortal does not act as a key management service, does not host a hardware security module, does not federate against AWS KMS, Azure Key Vault, GCP KMS, HashiCorp Vault, or any enterprise vault, does not generate or rotate cryptographic material on your behalf, does not parse FIPS validation certificates, does not maintain an algorithm-deprecation calendar inside the workspace, does not run a continuous CT-log monitor for unauthorised certificates issued against your domains, and does not integrate with Jira, ServiceNow, Slack, SIEM, SOAR, or any ticket system through a packaged API surface. Programmes that need real-time KMS-policy reconciliation, HSM-backed signing operations, post-quantum-cryptography migration tooling, or CT-log subscription typically run a separate worker against those upstream feeds and land the resulting findings on the engagement record through bulk finding import. The platform value is the consolidated record where every A02 finding (whether it came from native external scanning, authenticated scanning, code scanning, bulk import from an outside crypto-audit tool, or a manual finding entry against a key management gap) lives alongside the rest of the security backlog with the same lifecycle, the same role-based access control, the same activity log, and the same evidence trail.

Related vulnerabilities and recommended reading

A02 is the parent category for a cluster of more specific findings and the upstream concern for several SecPortal workflows. The pages below cover the per-finding shapes A02 produces, the frameworks that map control evidence against cryptographic posture, and the programme workflows that hold the A02 backlog across detect, triage, prioritise, route, remediate, and verify.

• Weak cryptography the per-finding shape that A02 most often produces in source code: deprecated hashes, ECB-mode AES, predictable IVs, and JWTs accepting the none algorithm.
• TLS and SSL misconfiguration the transport-layer A02 finding that the external SSL Checker scan reads against every endpoint on the verified perimeter.
• Sensitive data exposure the disclosure symptom that surfaces when an A02 cryptographic failure lets data reach a context the protection should have prevented.
• Insecure randomness the per-finding shape for non-cryptographic RNG use on session tokens, password-reset tokens, and CSRF tokens that A02 covers as a category.
• JWT vulnerabilities the signing and verification failures (none-algorithm bypass, RS256-to-HS256 confusion, weak HMAC secrets) that the authenticated scanner probes inside A02.
• Hardcoded secrets the key custody failure that code scanning surfaces when keys, signing material, or API credentials live in source rather than in a managed vault.
• Padding oracle attack the specific exploitation path that emerges when CBC-mode encryption is deployed without authenticated integrity protection across an attacker-observable surface.
• Insecure design (A04:2021) the upstream design-stage category that explains why an A02 failure exists when the threat model never named the cryptographic requirement.
• OWASP ASVS Chapter V6 Stored Cryptography, V9 Communications, and V11 Business Logic are the verification standard sections that read against the controls A02 expects.
• PCI DSS Requirements 3 (protect stored account data) and 4 (protect cardholder data with strong cryptography during transmission) are the payment-industry mapping for A02 evidence.
• ISO/IEC 27001 Annex A.8.24 use of cryptography and A.8.20 networks security are the ISO mapping for A02 control evidence in an ISMS-style audit.
• NIST SP 800-53 the SC system and communications protection control family is the federal mapping for A02 cryptographic posture evidence.
• OWASP Top 10 explained the parent reference that sets A02 alongside the rest of the Top 10 and the 2021 rename from Sensitive Data Exposure.
• CVSS scoring explained the severity-calibration reference for translating a raw A02 finding into an asset-tier-calibrated CVSS 3.1 vector.
• SDLC vulnerability handoff the workflow that hands cryptographic findings from AppSec to engineering owners without losing the trail back to the missing standard or the bypassed control.
• Control gap remediation workflow the programme-level workflow that carries cryptographic-control gaps from discovery to closure with framework mapping intact.
• Audit fieldwork evidence request fulfillment the workflow that turns A02 findings and the closure trail into the evidence pack the audit fieldwork request reads.
• SecPortal for AppSec teams the audience overview for the teams that own application-layer cryptographic standards across the portfolio.
• SecPortal for GRC and compliance teams the audience overview for the teams that read A02 evidence into PCI DSS, ISO 27001, SOC 2, NIST, HIPAA, and GDPR control packs.

Compliance impact