You are working for an organisation that is using a very old web-based applicationthat was developed in-house and is only used by members of the organisation. Theleader of the web development team has indicated that the application needs to beurgently redeveloped as it is dependent upon outdated frameworks that haverecently been found to be vulnerable to SQL injection attacks, however theorganisation is currently short on funding. One of the security team has suggestedusing a web application firewall to prevent common attacks instead.(a) Explain the additional security that would be provided by the web applicationfirewall.(b) Discuss any alternative or complimentary technologies that would assist insecuring the application.

(a) The following securities provided by the web application firewall: A WAF (Web Application…

Answered: (a) Explain the additional security…

(a) Explain the additional security that would be provided by the web api firewall. (b) Discuss any alternative or complimentary technologies that would assist in securing the anplication.

Database System Concepts

7th Edition

ISBN:9780078022159

Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Chapter1: Introduction

Section: Chapter Questions

Problem 1PE

See similar textbooks

Related questions

Q: Think about a situation in which hackers got access to information by installing malware on the POS…

A: Let me the explain everything one by one with an example of a POS virus attack, how it can be done,…

Q: Do you have any suggestions or advice on how an effective firewall might be maintained in the most…

A: A network firewall is an essential security tool that has to be as strong as possible. When it comes…

Q: Could you please explain the key distinctions between software and hardware firewalls? Is there a…

A: Dear Student, The answer to your question is given below -

Q: Discuss the importance of cross-origin resource sharing (CORS) in web security. How does it work,…

A: Cross-Origin Resource Sharing (CORS) is a security feature implemented by web browsers to control…

Q: What are some of the proposed practices for the administration of the firewall? Explain?

A: A firewall plays a crucial role in maintaining the security of an organization.A firewall protects a…

Q: Provide a description of "firewall" in terms of network security, describe how it is applied to…

A: Answer is

Q: Detailed Positive Qualities of the BWAPP (Buggy Web Application) with regards to all aspects of…

A: According to the information given:- We have to define Positive Qualities of the BWAPP (Buggy Web…

Q: Write a comprehensive report comparing different firewall configurations, detailing their benefits,…

A: Firewalls are essential components of network security, serving as a barrier between internal…

Q: Using the Web, search for “software firewalls.” Examine the various alternatives available and…

A: Software firewalls require you to choose the hardware and the OS. It is up to you to harden your OS…

Q: Create, then document 2 firewall rules that would be important to include if all outbound traffic is…

A: Given: Create, then document 2 firewall rules that would be important to include if all outbound…

Q: Presenting the a.NET security standards' major elements. Start your research with reputable sites…

A: 1) The OWASP (Open Web Application Security Project) GitHub page is a platform where OWASP, a…

Q: Besides the firewall that we constructed, can you describe three (3) important and distinct places…

A: Injection flaws: Failure to screen untrusted input causes injection problems. Passing unfiltered…

Q: a firewall in the demilitarized zone (DMZ) that proxies requests to an internal Web server (in a…

A: INTRODUCTION: A server farm, sometimes called a server cluster, is a collection of computers servers…

Q: Important criteria for an a.security NET are laid down. You may begin your investigation at the Open…

A: When evaluating the security of a .NET application, it is essential to consider important criteria…

Q: identity three(3) significant and distinct areas for which our application and its environment is…

A: Injection flaws Injection flaws result from a classic failure to filter untrusted input. It can…

Q: Do you have any ideas for effective management methods for a firewall? Explain.

A: Firewall A firewall is a software or hardware that may be set to restrict data from specific sites,…

Q: Please enumerate the essential components of a.NET security and explain why they are so vital. All…

A: The essential components of .NET security include authentication, authorization, code access…

Q: Describe the post-implementation maintenance plan for the implementation of next generation firewall…

A: Firewall: The most important part if network security is firewall and it is known as the first line…

Q: What are some firewall implementation best practices?

A: FIREWALL: Firewall is basically the security system which is used to control the incoming and…

Q: Explore the security considerations in web development, including common vulnerabilities like…

A: Web development isn't just about crafting beautiful websites; it's also about ensuring that these…

Q: Which firewall design dominates organizations today? Why? Explain.

A: Introduction: Firewalls are a crucial part of network security, providing a barrier between the…

Q: Could you perhaps explain what the phrase "Firewall vulnerability exploit" refers to in more detail?

A: Defined the phrase "Firewall vulnerability exploit"

Q: A virtual private network (VPN) is the best option for protecting the perimeter of a network. Can…

A: VPN is the best option for securing the network perimeter while enabling safe access to a range of…

Q: The a.NET security standards' most important characteristics are presented. The OWASP GitHub page,…

A: .NET is a platform developed by Microsoft that may be utilized to create a wide variety of programs…

Q: Could you please define "Firewall vulnerability exploit"?

A: Introduction: Firewall vulnerability: It is possible to attack the trusted network that the firewall…

Q: What are some of the most effective ways to maintain a firewall in good working order Explain?

A: Start: A firewall is a type of the security software that protects a computer or computer system…

Q: 7. Please write in complete sentences a. Explain how the SNMP engine ID is set and its importance in…

A: a. SNMP Engine ID Configuration and Importance (Detailed) Setting the Engine ID: The specific method…

Q: Please list the essential a.NET security components and explain why they are so important. The Open…

A: Security components within the .NET framework are crucial in safeguarding applications from threats…

Q: Discuss the purpose and implementation of web application firewalls (WAFs). How do they protect…

A: A security tool called a Web Application Firewall (WAF) is made to shield web applications from…

Q: In today's commercial world, which firewall architecture sees the greatest use? Why? Explain.

A: For me the best firewall architecture is the True DMZ because it is considered the most secure of…

Q: Which architecture has established itself as the de facto standard for the creation of a firewall in…

A: The de facto standard for the creation of a firewall in organizations that are functioning in the…

Q: In your opinion, what are the most effective firewall management practices? Explain.

A: A network firewall is an essential security tool you have, and it has to be as strong as possible.…

Q: Discuss the operation and significance of firewall devices in network security, including stateful…

A: In this question significance and operation of firewall devices need to be explained along with…

Q: What conceptual framework should be used to guide the construction of firewall rule sets as a…

A: Firewall is a product bundle that is installed in framework to forestall dangers, unapproved clients…

Q: Which architecture has emerged as the de facto standard for the construction of a firewall in…

A: DMZ-ENABLED SCREENED SUBNET FIREWALL: SUBNET FIREWALL WITH SCREENINGScreened Subnet Firewalls are…

Q: A popular computer network publication stated at one time that the enterprise firewall was dead. It…

A: It is not a good practice to adopt to the host based firewalls. As some hosts make their firewall…

Q: Discuss post-implementation risks, including their likelihood, organizational impact, and mitigation…

A: Next-generation firewalls: These are firewalls that contain a lot more intelligence than your…

Q: Please list the most important parts of a.NET protection and tell us why they are so important. The…

A: The answer is given below step.

Q: Which of the following best describes how the logging approach called "centralized logging" is…

A: - We need to talk about centralised logging and choose how its different from its counterpart.

Q: Explain why the Injection Flows, Cross Site Scripting, Security Misconfiguration, Failure to…

A: Injection Flows: This kind of attack happens when a hacker is able to insert harmful code into a…

Q: When it comes to firewalls in modern enterprises, which design has become the norm? Why? Explain.

A: Internet traffic entering, leaving, or moving within a private network is restricted by a firewall,…

Q: a proxy firewall located in the demilitarized zone (DMZ) that may connect to an internal Web server…

A: The solution to the given question is: GIVEN A server farm , also known as a server cluster , is a…

Q: Besides the firewall we constructed, what are three (3) other major and distinctive points of…

A: Faults in injection: A typical inability to filter untrusted input leads to injection problems. It…

Question

You are working for an organisation that is using a very old web-based application
that was developed in-house and is only used by members of the organisation. The
leader of the web development team has indicated that the application needs to be
urgently redeveloped as it is dependent upon outdated frameworks that have
recently been found to be vulnerable to SQL injection attacks, however the
organisation is currently short on funding. One of the security team has suggested
using a web application firewall to prevent common attacks instead.
(a) Explain the additional security that would be provided by the web application
firewall.
(b) Discuss any alternative or complimentary technologies that would assist in
securing the application.

Expert Solution

This question has been solved!

Explore an expertly crafted, step-by-step solution for a thorough understanding of key concepts.

SEE SOLUTION Check out a sample Q&A here

Step 1

VIEW

Step 2

VIEW

Step by step

Solved in 2 steps

SEE SOLUTION Check out a sample Q&A here

Knowledge Booster

Learn more about

Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.

Similar questions

What are the key distinctions between firewalls that are software and those that are hardware-based? Is there a clear winner between the two? Which circumstance best suits each option?
Provide some background on the term "firewall" and how it is used in the context of network security and network topologies and designs.
Discuss the function of firewalls in modern network architectures and define the term "firewall" in its context.
Summarize the risks of using JavaScript in a web application from a security perspective.
What is the main difference between hardware-based firewalls and software-based firewalls? What do you think about this? In what kinds of situations would each choice be the best?
The foundations of a.NET security are laid out here. The OWASP GitHub page, the Microsoft.NET security website, and other reputable online resources are good places to start your investigation.
Compare and contrast the roles and responsibilities of a stateful firewall and a stateless firewall in the context of the OSI model.
Identify how all of the components discussed throughout the course come together to create the environment necessary for the firewall to truly protect a network (perimeter and internal zone). Is there anyone component that drives the success of the firewall systems? If so, which one and why? Support your argument.
Which firewall construction style has emerged as the de facto norm for companies operating in the modern era? Why? Explain.
Could you perhaps clarify what the term "Firewall vulnerability exploit" means?
Considering the factors presented and available money, how would you decide on a firewall solution for your design network? Please provide references to support your assertions.
Establishing the firewall's role in ensuring the security of the network is a prerequisite to going on with other matters. Before going on to other matters, this must be completed. Remember that not only an explanation of the phrase, but also specific facts and cases, are necessary to establish the significance of the term in the context of business.