CHAPTER 5

image

How to Build Preventative Countermeasures for Web Application Vulnerabilities

Most of the vulnerabilities identified in Chapter 3 could have been simply avoided by not allowing them to occur in the first place. The best way to avoid creating vulnerabilities in web applications is to plan and build security as part of the development cycle.

Since application-security planning is not a widely understood art, and since it involves time and expenses, it is often neglected. The unfavorable alternative is to test applications for vulnerabilities after they are created in test or beta test mode. As we saw in Chapter 3, this is simply too late. ...

Get The Manager’s Guide to Web Application Security: A Concise Guide to the Weaker Side of the Web now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.