Normally when we talk about application security I have seen many vendors they end up in doing in front end assessment. The front end may cover from GUI to app/ web servers.
The big question is, is it enough? It is agreed that the hacker uses the front end of the application to hack the application but one of his goal would be to reach the data and data lies in database. So, there is no point in securing the application only from front end.
We need to make sure that the application should also be secured from back end as well.
No comments:
Post a Comment