Success Criterion 3.3.9 - Level AAA
Accessible Authentication (Enhanced)
A cognitive function test (such as remembering a password or solving a puzzle) is not required for any step in an authentication process unless that step provides at least one of the following:
Alternative : Another authentication method that does not rely on a cognitive function test.
Mechanism : A mechanism is available to assist the user in completing the cognitive function test.
The purpose of this Success Criterion is to ensure there is an accessible, easy-to-use, and secure method to log in, access content, and undertake tasks. This criterion is the same as Accessible Authentication but without the exceptions for objects and user-provided content.