1
Q
HTTP Security Headers
A
Easy way to secure a web application
They restrict behaviours permitted by browsers and servers once an app is running.
2
Q
HTTPS
A
HTTPS is an implementation of TLS encryption on top of the HTTP protocol
3
Q
TLS protocol properties
A
Encryption: hides the data being transferred from third parties
Integrity: verifies that the data has not been forged or tampered with
Authentication: ensures that the parties exchange information are who they claim to be
csc2031
flashcards
Decks in class (17)
# Cards
-
Security Basics13
-
Input Threats & Validation10
-
Handling errors8
-
Hardcoded storage13
-
Database Storage9
-
Cryptography9
-
Protecting stored data13
-
Authenticating users26
-
Password Management3
-
Authorisation20
-
Logging user events13
-
Software Access Modifiers3
-
Filesystem Permissions11
-
Random Numbers10
-
Vulnerabilities of data transmission19
-
HTTP Security Headers3
-
Digital Signatures5
