IT Security/Host/Application

< IT Security < Host

This lesson covers application security.

Objectives and Skills

Objectives and skills for the application security portion of Security+ certification include:^[1]

Explain the importance of application security controls and techniques.

Fuzzing
Secure coding concepts
- Error and exception handling
- Input validation
Cross-site scripting prevention
Cross-site Request Forgery (XSRF) prevention
Application configuration baseline (proper settings)
Application hardening
Application patch management
NoSQL databases vs. SQL databases
Server-side vs. Client-side validation

Multimedia

Watch YouTube: Fuzzing - CompTIA Security+ SY0-401: 4.1.
Watch YouTube: Secure Coding Concepts - CompTIA Security+ SY0-401: 4.1.
Watch YouTube: Application Configuration Baselining and Hardening - CompTIA Security+ SY0-401: 4.1.
Watch YouTube: Application Patch Management - CompTIA Security+ SY0-401: 4.1.
Watch YouTube: SQL and NoSQL Databases - CompTIA Security+ SY0-401: 4.1.
Watch YouTube: Server-side vs. Client-side Validation - CompTIA Security+ SY0-401: 4.1.

References

↑ CompTIA: Security+ Certification Exam Objectives - Exam SY0-401

This article is issued from Wikiversity - version of the Sunday, December 13, 2015. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.