* 사업 등 관련 문의: T) 02-322-4688, F) 02-322-4646, E) info@wikisecurity.net
(출처 : wikisecurity)
Application security encompasses measures taken throughout the application's life-cycle to prevent exceptions in the security policy of an application or the underlying system (vulnerabilities) through flaws in the design, development, deployment, upgrade, or maintenance of the application.
Applications only control the use of resources granted to them, and not which resources are granted to them. They, in turn, determine the use of these resources by users of the application through application security.
Open Web Application Security Project (OWASP) and Web Application Security Consortium (WASC) updates on the latest threats which impair web based applications. This aids developers, security testers and architects to focus on better design and mitigation strategy. OWASP Top 10 has become an industrial norm in assessing Web Applications.
어플리케이션은 허용된 부분만 제어해야 하며 어플리케이션 보안을 통해 사용자는 해당 리소스를 사용해야 하는데, 그렇지 않을 경우 어플리케이션의 설계, 개발, 이관, 업그레이드나 유지관리에서 발생할 수 있는 결함이다. 웹어플리케이션 위협은 최근 OWASP와 WASC에 업데이트되었다.