Internet and Web Application Attacks - an Overview of Protection Measures
Due to reliance upon online services for our day-to-day activities, higher emphasis is placed on various layers of network, server, and application security to protect against attacks that may impact an application's availability to users. From a high-level perspective, we will list and review various security strategies that may increase the likelihood of protection should an application attack launch on a company. We need to understand that technologies are constantly evolving, new and improved techniques are always available to add to your strategy. However, attackers tend always to be a step ahead. This article will cover a general rule of thumb, assuming that patching and routine maintenance is practiced, disallowing stale, aged, unsupported operating systems, applications, and services from participating in production-grade networks and datacenters. Physical Security As usual, all IT core equipment should be contained in a dedicated service room, which most call a "data