SlideShare a Scribd company logo

Web application security

Download as PPTX, PDF
Yousuf Moin, profile picture
Yousuf Moin

The document outlines key web application security measures, including restricting access from trusted networks and encrypting access through HTTPS with SSL certificates. It emphasizes the importance of implementing two-factor authentication for user accounts to protect against unauthorized access. Additionally, it details application design protocols for managing web requests from internal and external users effectively.

Technology
Related topics:
Information Security
1 of 6
Download to read offline
1
2
3
4
5
6
Web Application Security YOUSUF MOIN IT SPECIALIST | TECHNOLOGY PROFESSIONAL
Point # 01 Allow the access from the trusted network and control the traffic of untrusted network with the help of UTM box
Point # 02 Access mechanism must be encrypted ◦ Use the https protocol instead of http ◦ Use the proper SSL certificate
Point # 03 Implement two factor authentication ◦ You land on the website’s login screen and enter your username and password to request access to your account. ◦ If you’ve only enabled two-factor authentication to activate if the request has been flagged, the system will determine if you need to complete the additional verification step to ensure you’re not a hacker.
Point # 03 ◦ A code will be sent via text message to the phone number you provided when you created the account. During this time, you’ll be directed to a second login screen prompting you to enter the code. ◦ Once you’ve entered your passcode, the system will verify that the code you enter is the same as the one that was sent to you. ◦ If there’s a match, you’ll be able to access your account.
Point # 04 Application design should be External USer Internet DMZ IPInternal Network IP Internal User Webpage request from Outside Resolve from the public DNS entry that points to the Firewall Firewall Allow and redirect request to only DMZ IP Webpage request from Inside Real time sync

More Related Content

PPTX
Computer crime
nurdiva123
 
PPTX
Hacking computer crime
ELDO RAJU
 
PPTX
The Cost and Loss of Not using Single Sign-On with Two-Factor Authentication
PortalGuard dba PistolStar, Inc.
 
PDF
IRJET - Secure Banking Application with Image and GPS Location
IRJET Journal
 
PPTX
secure and authentication using personal device ppt
Shiva Shiva
 
PDF
The Immune System of Internet
Mohit Kanwar
 
PDF
Fraud Analytics Techniques Moving Into Security
Bruno Motta Rego
 
PPTX
"Bypassing two factor authentication", Shahmeer Amir
HackIT Ukraine
 
Computer crime
nurdiva123
 
Hacking computer crime
ELDO RAJU
 
The Cost and Loss of Not using Single Sign-On with Two-Factor Authentication
PortalGuard dba PistolStar, Inc.
 
IRJET - Secure Banking Application with Image and GPS Location
IRJET Journal
 
secure and authentication using personal device ppt
Shiva Shiva
 
The Immune System of Internet
Mohit Kanwar
 
Fraud Analytics Techniques Moving Into Security
Bruno Motta Rego
 
"Bypassing two factor authentication", Shahmeer Amir
HackIT Ukraine
 

Similar to Web application security (20)

PPTX
Two factor authentication end user guide
Golam Rabby
 
PPTX
Two factor authentication.pptx
ArpithaShoby
 
PDF
How to Find and Fix Broken Authentication Vulnerability
AshKhan85
 
PDF
INSTAGRAM – HACKING AND PREVENTION TIPS
Rohan Nyayadhish
 
PDF
Two factor authentication_procedure
mailkaiser
 
PDF
How to Implement Website Authentication By MyOtpApp
myotpappmarketing
 
DOCX
Digital signature
gajerachetan
 
PDF
120 i143
Hai Nguyen
 
PDF
How LoginRadius Secures Smart and IoT Authentication
Kevin Mathew
 
PPTX
E-commerce-Security-_20250212_131135_0000.pptx
CrisantafeOsia
 
PPT
Two way authentication
sree valli
 
PPT
Two way authentication
sree valli
 
PDF
E-Business security
Surendhranatha Reddy
 
PPTX
Keylogging resistant visual authentication Protocols
Vishnu Toparies
 
PPTX
Web application security part 02
Prachi Gulihar
 
PPTX
How to use microsoft authenticator app
Server Consultancy
 
PPTX
E commerce security
Roha1234567
 
PDF
free blogger templates documents based on knowledge
vc2738012
 
PDF
Iaetsd vulnerabilities in credit card security
Iaetsd Iaetsd
 
PDF
Web Authn & Security Keys: Unlocking the Key to Authentication
FIDO Alliance
 
Two factor authentication end user guide
Golam Rabby
 
Two factor authentication.pptx
ArpithaShoby
 
How to Find and Fix Broken Authentication Vulnerability
AshKhan85
 
INSTAGRAM – HACKING AND PREVENTION TIPS
Rohan Nyayadhish
 
Two factor authentication_procedure
mailkaiser
 
How to Implement Website Authentication By MyOtpApp
myotpappmarketing
 
Digital signature
gajerachetan
 
120 i143
Hai Nguyen
 
How LoginRadius Secures Smart and IoT Authentication
Kevin Mathew
 
E-commerce-Security-_20250212_131135_0000.pptx
CrisantafeOsia
 
Two way authentication
sree valli
 
Two way authentication
sree valli
 
E-Business security
Surendhranatha Reddy
 
Keylogging resistant visual authentication Protocols
Vishnu Toparies
 
Web application security part 02
Prachi Gulihar
 
How to use microsoft authenticator app
Server Consultancy
 
E commerce security
Roha1234567
 
free blogger templates documents based on knowledge
vc2738012
 
Iaetsd vulnerabilities in credit card security
Iaetsd Iaetsd
 
Web Authn & Security Keys: Unlocking the Key to Authentication
FIDO Alliance
 
Ad

Recently uploaded (20)

PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
KodekX | Application Modernization Development
KodekX
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Ad

Web application security

  • 1. Web Application Security YOUSUF MOIN IT SPECIALIST | TECHNOLOGY PROFESSIONAL
  • 2. Point # 01 Allow the access from the trusted network and control the traffic of untrusted network with the help of UTM box
  • 3. Point # 02 Access mechanism must be encrypted ◦ Use the https protocol instead of http ◦ Use the proper SSL certificate
  • 4. Point # 03 Implement two factor authentication ◦ You land on the website’s login screen and enter your username and password to request access to your account. ◦ If you’ve only enabled two-factor authentication to activate if the request has been flagged, the system will determine if you need to complete the additional verification step to ensure you’re not a hacker.
  • 5. Point # 03 ◦ A code will be sent via text message to the phone number you provided when you created the account. During this time, you’ll be directed to a second login screen prompting you to enter the code. ◦ Once you’ve entered your passcode, the system will verify that the code you enter is the same as the one that was sent to you. ◦ If there’s a match, you’ll be able to access your account.
  • 6. Point # 04 Application design should be External USer Internet DMZ IPInternal Network IP Internal User Webpage request from Outside Resolve from the public DNS entry that points to the Firewall Firewall Allow and redirect request to only DMZ IP Webpage request from Inside Real time sync