Tips to Protect Website from External Threats

Page 1

WHAT IS WEB APPLICATION SECURITY?

Web application security is the procedure of securing confidential data stored online from unauthorized access and modification. Security threats can compromise the data stored by an organization is hackers with malicious intentions try to gain access to sensitive information.

TIPS TO PROTECT WEBSITE FROM EXTERNAL THREATS Regular Software Updates  Prevent SQL Injection  Error Messages  Validation  Passwords  File Uploads  Secured Networking 

REGULAR SOFTWARE UPDATES Up to date software is vital in keeping your site secure. This not only applies to the server operating system but also to any software you may be running on your website. Apply for software patches for third-party software on your website.

PREVENT SQL INJECTION This happens when you use standard Transact SQL and unknowingly you insert rogue code into your query, which can be manipulated to alter tables or data deletion. Prevent this by using parameterized queries.

ERROR MESSAGES The information given in error messages should be limited. This prevents data leak secrets on your server. Show only the information that is needed.

VALIDATION Validation of both on the browser and server side must be done. Prevent data bypass through your browser, as malicious code or script can be inserted through it into your database.

PASSWORDS Provide strong passwords to your server and admin area. Minimum character count, the combination of uppercase and lowercase characters etc strategies must be applied. Store these passwords as encrypted values and compare these encrypted values. Use salt password mechanism for enhanced protection.

FILE UPLOADS Allowing users to upload files to your website can be risky. The risk is that any file uploaded, could contain a script or code that when executed on your server cause problem. Verify all the website uploads. These files should not auto-execute on your server.

SECURED NETWORKING Pay careful attention towards the address bar of the websites before logging into them. This is a must while dealing with financial websites.

Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.