IT Security/Host/Application
Appearance
< IT Security | Host
This lesson covers application security.
Objectives and Skills
[edit | edit source]Objectives and skills for the application security portion of Security+ certification include:[1]
- Explain the importance of application security controls and techniques.
- Fuzzing
- Secure coding concepts
- Error and exception handling
- Input validation
- Cross-site scripting prevention
- Cross-site Request Forgery (XSRF) prevention
- Application configuration baseline (proper settings)
- Application hardening
- Application patch management
- NoSQL databases vs. SQL databases
- Server-side vs. Client-side validation
Readings
[edit | edit source]Multimedia
[edit | edit source]- YouTube: Fuzzing - CompTIA Security+ SY0-401: 4.1
- YouTube: Secure Coding Concepts - CompTIA Security+ SY0-401: 4.1
- YouTube: Application Configuration Baselining and Hardening - CompTIA Security+ SY0-401: 4.1
- YouTube: Application Patch Management - CompTIA Security+ SY0-401: 4.1
- YouTube: SQL and NoSQL Databases - CompTIA Security+ SY0-401: 4.1
- YouTube: Server-side vs. Client-side Validation - CompTIA Security+ SY0-401: 4.1