Update cheatsheets/Choosing_and_Using_Security_Questions_Cheat_Sheet.md

Co-authored-by: Shlomo Zalman Heigh <shlomozalmanheigh@gmail.com>
OWASP · Aug 15, 2024 · 02c2532 · 02c2532
1 parent 9e0475d
commit 02c2532
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/cheatsheets/Choosing_and_Using_Security_Questions_Cheat_Sheet.md b/cheatsheets/Choosing_and_Using_Security_Questions_Cheat_Sheet.md
@@ -81,7 +81,7 @@ Answers should also be checked against a denylist, including:
 
 #### Renewing Security Questions
 
-If the security questions are not used as part of the main authentication process, then consider periodically (probably when they are changing their passwords after expiration) prompting the user to review their security questions and verify that they still know the answers. This should give them a chance to update any answers that may have changed (although ideally this shouldn't happen with good questions), and increases the likelihood that they will remember them if they ever need to recover their account.
+If the security questions are not used as part of the main authentication process, then consider periodically (such as when they are changing their passwords after expiration) prompting the user to review their security questions and verify that they still know the answers. This should give them a chance to update any answers that may have changed (although ideally this shouldn't happen with good questions), and increases the likelihood that they will remember them if they ever need to recover their account.
 
 ### System Defined Security Questions