O'Reilly logo

Network and Data Security for Non-Engineers by Stephan S. Jones, Kevin Groom, Frank M. Groom

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 12

Session Management, User Authentication, and Web Application Security

Websites and web applications are frequently targeted environments for security attacks since they are the prime places that users are accustomed to accessing and utilizing. Given the constant user access to websites over the public Internet, the largest amount of security liabilities is the result of a by-product of these accesses. The following explores the components of web application management and the most common website vulnerabilities.

We have already discussed a number of these vulnerabilities that occur with website access. Among these are

■  XSS: Cross-site scripting

■  SQLi: Structured query language injection

■  CSRF: Cross-site request forgery

■  SSL: ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required