Web application security - the fast guide SLIDES - Chapter 1:web application security overvi | Page 9

How to defend
Control access Input Attacker Monitor& Audit
Session Management
(create, destroy, transfer) Black List, White list Handle all errors Monitor
Authentication
(Password, Challenge, card, bio) Sanitization log Audit
Authorization and access control
(Privileges, Users, Groups, Roles Semantic check Detect Recursive and
fragmented check Response
Physical, Network, Platform, Application, Data and Response abstract layer
2017-04-17
Web Application Security Fast Guide (book slides)
By Dr.Sami Khiami
Slide 9