HTTP Headers
HTTP supports a large number of different headers, some of which are designed for specific unusual purposes. Some headers can
Read moreAuthor: Krishna
The HTTP Protocol
The hypertext transfer protocol (HTTP) is the core communications protocol used to access the World Wide Web and is used
Read moreWeb Application Technologies
Web applications employ a myriad of different technologies to implement their functionality. This article contains a short primer on the
Read moreManaging the Application
Any useful application needs to be managed and administered, and this facility often forms a key part of the application’s
Read moreHandling Attackers
Anyone designing an application for which security is remotely important must work on the assumption that it will be directly
Read moreHandling User Input
Recall the fundamental security problem described in Chapter 1: all user input is untrusted. A huge variety of different attacks
Read moreHandling User Access
A central security requirement that virtually any application needs to meet is to control users’ access to its data and
Read moreCore Defense Mechanisms
The fundamental security problem with web applications — that all user input is untrusted — gives rise to a number
Read moreThe Future of Web Application Security
Several years after their widespread adoption, web applications on the Internet today are still rife with vulnerabilities. Understanding of the
Read moreWeb Application Security
As with any new class of technology, web applications have brought with them a new range of security vulnerabilities. The
Read more