Web Application Security
As with any new class of technology, web applications have brought with
them a new range of security vulnerabilities. The set of most commonly
encountered defects has evolved somewhat over time. New attacks have been
conceived that were not considered when existing applications were devel-
oped. Some problems have become less prevalent as awareness of them has
increased. New technologies have been developed that have introduced new
possibilities for exploitation. Some categories of flaws have largely gone away
as the result of changes made to web browser software.
Throughout this evolution, compromises of prominent web applications
have remained in the news, and there is no sense that a corner has been turned
and that these security problems are on the wane. Arguably, web application
security is today the most significant battleground between attackers and
those with computer resources and data to defend, and it is likely to remain so
for the foreseeable future.
Do'stlaringiz bilan baham: |