Web Application Security Flaws

Let’s understand security flaws in web based applications

Following are stack where we miss security measurements like…

Underlaying Architecture

  • Hardware, Network, PKI, and authentication

Poor coding practice

  • Lack of proper input validation

No encryption of

  • Data in transit

Security at Network

Network Security
  • Network accessibility
  • Lack of encryption at network
  • Lack of digital signatures
  • Web app back-end on user network

Security at Operation System

Operation System
  1. Missing patches of operation systems
  2. Default settings of operation systems
  3. Unnecessary services of systems
  4. Unused user accounts of systems

Security at Web Service stack

Web Service stack
  1. Missing software updates
  2. Expired PKI certificate
  3. Unnecessary running module
  4. Default settings of services
  5. HTTP vs HTTPs
  6. Using SSL instead of TSL

Security at Third-party components

Third-party components
  1. Lack of component knowledge
  2. Missing software updates
  3. Default Settings of third party component's
  4. Authentication with other components




Android Developer Advocate & Architect ✔Technology Leader ✔Life Coach #techentrepreneur #polyglot programer #BuildBetterApp

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Mutual TLS in Elixir Part 2: Testing and Intermediate CAs

6 tips: How to develop secure code for mobile

Coronavirus pandemic and cybersecurity — keeping safe in a time of uncertainty

IMAGE: Working from home, but it’s business as usual (Credits @charlesdeluvio Unsplash.com)

A digital seat is for heavy duty, built to last.

Welcome to Orion

RE: Report on subject alpha (Tokyo 1)

Founder stories: Laura Bell from SafeStack


Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Pragati Singh ⭐️⭐️⭐️⭐️⭐️

Pragati Singh ⭐️⭐️⭐️⭐️⭐️

Android Developer Advocate & Architect ✔Technology Leader ✔Life Coach #techentrepreneur #polyglot programer #BuildBetterApp

More from Medium

Secure Synology NAS with a custom domain, dynamic DNS and a free certificate

How To Build A Simple Render Engine From Scratch

Simple Script to Create Daily Backups of Your Projects

Single Sign On (SSO) using Okta as Identity Provider (IdP) and simpleSAMLphp Authentication as…