The application security is the use of software, equipment, methods and procedures to protect applications from external threats. The security measures built into applications and application security routine minimize the risk that hackers will be able to handle applications and access, to steal, modify, or delete sensitive data. Once an afterthought in the development of software, security is becoming a concern increasingly important during development that applications are becoming more frequently available on the networks and are, therefore, vulnerable to a wide range of threats.
Measures taken to ensure the safety of applications are sometimes called countermeasures. Most basic software countermeasure is a firewall that prevents the execution of files or data manipulation by programs installed. Hardware most common countermeasure is a router that can prevent IP address of the computer from one individual to be directly visible on the Internet. Other measures include firewalls conventional encryption / decryption programs, anti-virus programs, spyware detection / suppression programs and biometric authentication systems.
Application security can be enhanced by the definition of the company rigorously, identifying what each application does (or will do) with respect to those assets, creating a security profile for each application, to identify and prioritize potential threats, and documenting adverse events and the actions taken in each case. This process is known as the threat modeling. In this context, is a threat any potential or actual adverse event that may jeopardize the assets of a business, including the two events malicious, as a Denial of Service (DOS) attack, and unplanned events, such as the failure of a storage device.
Measures taken to ensure the safety of applications are sometimes called countermeasures. Most basic software countermeasure is a firewall that prevents the execution of files or data manipulation by programs installed. Hardware most common countermeasure is a router that can prevent IP address of the computer from one individual to be directly visible on the Internet. Other measures include firewalls conventional encryption / decryption programs, anti-virus programs, spyware detection / suppression programs and biometric authentication systems.
Application security can be enhanced by the definition of the company rigorously, identifying what each application does (or will do) with respect to those assets, creating a security profile for each application, to identify and prioritize potential threats, and documenting adverse events and the actions taken in each case. This process is known as the threat modeling. In this context, is a threat any potential or actual adverse event that may jeopardize the assets of a business, including the two events malicious, as a Denial of Service (DOS) attack, and unplanned events, such as the failure of a storage device.
