# Incorrect Authorization (CWE-863)

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

- Prevalence: 높음 Shoulder 규칙 없음
- Impact: 높음 OWASP Top 10 #1
- Prevention: MITRE 참조 외부 참조

**OWASP:** Broken Access Control (A01:2021-Broken Access Control) - #1

## Description

Even when authorization checks exist, incorrect implementation can allow unauthorized access. This includes using the wrong comparison logic, checking the wrong attributes, or having inconsistent enforcement.

## Prevention

## Consequences

- 애플리케이션 데이터 읽기
- 애플리케이션 데이터 수정
- 권한 획득

## Mitigations

- 중앙 집중식 인가 메커니즘을 사용하세요
- 여러 사용자 역할로 인가 로직을 철저히 테스트하세요
- 모든 리소스에 일관되게 인가 검사를 구현하세요