Layered Security Strategies for Websites and Web Applications
It used to be that security administrators felt comfortable focusing their efforts on perimeter security. Firewalls were the name of the game, and for a time, networks were relatively safe behind them. Today’s attacks—such as injection attacks, social engineering, and others—bypass many of a network’s perimeter defenses, leaving it vulnerable.
Today, a network cannot be secure with a single security approach. A complete and layered approach to network security is required. A security administrator could use any number of layers to protect a network, including perimeter security, host-based security mechanisms, authentication and access management, network and application access controls, ...
Get Internet and Web Application Security, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
