123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> General >> View Article

Detection & Handling Of Application Security Threats

Profile Picture
By Author: AkanshaK
Total Articles: 6
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Since there are several variations in specific attacks as well as attack techniques, for better detection, it is essential to view the threat in the prospects of how attackers are attempting to achieve.

Application Threats & Countermeasures
A good way of detecting application threats is to arrange them in a vulnerable category. Here is an overview of the various categories and the main threats to the application.

Input validation vulnerability category includes threats like cross-site scripting, buffer overflow, SQL injection, and canonicalization.
Authentication is prone to brute force attacks, cookie replay, dictionary attacks and network eavesdropping.

Authorization includes confidential data disclosure, elevation of privilege, luring attacks and data tampering.

The configuration management category includes the attacks like unauthorized administration interface access, the absence of individual accountability, clear text config data retrieval, over-privileged process and unauthorized configuration stores access.

Sensitive data includes access to sensitive data in storage, ...
... data tampering, and network eavesdropping.

Session management includes session replay, session hijacking, and man in the middle attack.

Cryptography includes poor key management, poor key generation, custom or weak encryption.

Exception Management comprises a denial of service and information disclosure.

Auditing & Logging involves user denies of doing an action, attackers covers his tracks and attacker exploits a vulnerability without a trace.

How To Handle Application Security Threats
Validated Input- Validate the inputs to the application by using fundamental edit checking to ensure that the content submitted through the user interface is proper for each fold.

Bind Variables – take the benefits of bind variables when executing SQL queries.

Restrict the access to the internal resources through various application server config settings.

Update framework on a normal interval.

Qualify entire user input

Filter potentially malicious input

Choose a strong password, which is complex, aren’t regular words, and include a compilation of lowercase, uppercase, numeric & special characters.

Use standard encryption technology to keep sensitive information in configuration databases and files.

Use sturdy ACLs to safeguard Windows resources.

Perform role evaluation before permitting access to the application, which could potentially disclose sensitive data.

Use sturdy authorization with several gatekeepers.

Total Views: 509Word Count: 328See All articles From Author

Add Comment

General Articles

1. Magento Developers Melbourne: Your Trusted Partner For Magento Web Development
Author: themerchantbuddy

2. How Can E-commerce App Development Help Your Business?
Author: Comfygen

3. The Best Baby Cot Mattress For Summer In Australia: Keep Your Baby Cool And Comfortable !
Author: Milari Organics

4. How Might An Amazon Fba Prep Service Center Help You Streamline Your Business?
Author: 3pshipping6

5. Reviving Artisanal Craftsmanship – Why Handmade Products Matter More Than Ever
Author: Chaitanya Kumari

6. What To Look For In A New York Labor And Employment Law Firm
Author: jewellansing792

7. 50 Years Of Long-lasting Performance
Author: Busch Vacuum Solutions

8. Optimize Healthcare Revenue Cycle: Strategies For Financial Success
Author: Albert brown

9. Offres Exclusives Pour Vos Voyages En Inde Du Nord — Économisez Jusqu’à 30% — Réservez Dès Maintenant!
Author: yatika

10. 200-hour Weekend Yoga Teacher Training Course (yttc) In Bengaluru: A Pathway To Mastery In Yoga
Author: Yogakulam Academy

11. Understanding Patient Behavior: The Importance Of Market Research In Healthcare Marketing
Author: Adomantra

12. Ensuring Safety And Privacy: The Advantages Of Close Protection Services In Dubai
Author: Shancy

13. Thermodynamic Steam Traps: A Compact Solution For Maximum Performance
Author: David John

14. Best Accounting Service In California – Mj Financials
Author: maria jeffery

15. Best Astrologer In Hosahalli
Author: Pandith Keshav Das

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: