Securing Web Applications Made Simple and Scalable

by Gregory Leonard
Sept. 1, 2017 0 comments SANS Institute application and database security

The weakest point in modern networking infrastructures is often not the low-level hardware and software running on the servers, but the web applications that are developed and hosted upon them. Older web applications were developed with few security requirements in mind at a time when protecting them against malicious users was of less concern than simply getting them to work. Web apps also tend to stick to the versions of third-party and open source software components they were first developed with, and upgrades that fix vulnerabilities aren’t always implemented. As old technologies remain stubbornly vulnerable, new methods of attack surface daily.

https://www.sans.org/reading-room/whitepapers/analyst/securing-web-applications-simple-scalable-3...