PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
January 2003

Web-based application infrastructure: Extended connectivity means more risk

Typical Web-based application infrastructures (see Figure 1) are segmented based on user trust levels. They contain firewalls to restrict traffic flow to authorized services. External traffic is allowed only to the Web server on ports 80 (HTTP) and 443 (SSL). An IDS monitors traffic for anomalies. All operating systems are hardened. The Web server is secured. An external scan of this IP space would reveal no vulnerabilities. However, add an e-business application on top of this infrastructure, and, by design, Internet users' connectivity is extended enormously. Customers can place their own orders in the organization's processing system, automatically triggering associated events in areas such as billing, the supply chain and the manufacturing line. To make this happen, the application layer allows users to indirectly interact with the Web server, the database server, the SMTP server and the application server. This extended connectivity to an organization's assets brings a whole new set of risks. A failure in the ...

Access this PRO+ Content for Free!

By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.

Safe Harbor

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue