Professional Documents
Culture Documents
13/03/2015 1
Challenges for Web Security
• Casual and untrained (in security matters)
users are common clients for web-based
services.
• The short history of the Web is filled with
examples of new and upgraded systems, that
are vulnerable to a variety of security attacks.
• Reputations can be damaged and money can
be lost if the Web servers are subverted.
Web Security Threats
Two types of security threats:
• Passive attacks
• Active attacks
• Confidentiality
• Message Integrity
SSL Record Protocol