Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Web Design

Employing Web Authentication and Encryption Technologies

advertisement 
Employing Web Authentication and Encryption Technologies
Completed
Action
Web authentication and encryption technologies
For Web resources that require minimal protection and for which
there is a small, clearly defined audience, configure address-based
authentication
For Web resources that require additional protection but which for
which there is a small, clearly defined audience, configure addressbased authentication as a second line of defense
For Web resources that require minimal protection but for which
there is no clearly defined audience, configure basic or digest
authentication (better)
For Web resources that require protection from malicious bots,
configure basic or digest authentication (better)
For Web resources that require maximum protection, configure
SSL/TLS
Configuring SSL/TLS
For configurations that require minimal authentication but require
encryption, use self-signed certificate
For configurations that require server authentication and encryption,
use third-party issued certificate
For configurations that require a medium level of client
authentication, configure server to require username and password
via SSL/TLS
For configurations that require a high level of client authentication
configure server to require client certificates via SSL/TLS
Configure file integrity checker to monitor Web server certificate
If only SSL /TLS is to be used on the Web server, ensure access via
TCP port 80 is disabled
If most traffic to the Web server will be via encrypted SSL/TLS,
ensure that appropriate logging and detection mechanisms are
employed on the Web server (because network monitoring is
ineffective against encrypted SSL/TLS sessions)
Related documents
Session management, authentication
Session management, authentication
17.1 Case Study Worksheet1
17.1 Case Study Worksheet1
cryptography and network security
cryptography and network security
CS 2813 - Loyola College
CS 2813 - Loyola College
Chapter 13
Chapter 13
Chapter 11 HW
Chapter 11 HW
Topic 8 Secure communication of mobile devices
Topic 8 Secure communication of mobile devices
Security in Online Banking
Security in Online Banking
403-forbbiden error when configur mysite as Active Directory form
403-forbbiden error when configur mysite as Active Directory form
Inter Bank Fund Transfer in Distributed Network
Inter Bank Fund Transfer in Distributed Network
I think that public-key`s authentication process and symmetric key`s
I think that public-key`s authentication process and symmetric key`s
NOTICE to potential Bidders: MMIS Access provisions are currently
NOTICE to potential Bidders: MMIS Access provisions are currently
Computer and Network Security
Computer and Network Security
323 - ClassicCMP
323 - ClassicCMP
Time Protocols
Time Protocols
Web Security
Web Security
A Tutorial on Web Security for E-Commerce
A Tutorial on Web Security for E-Commerce
cSecurityControlsTECH
cSecurityControlsTECH
Securing Web Services with Visual Basic 6
Securing Web Services with Visual Basic 6
PPT - fjhirsch
PPT - fjhirsch
Ssl tls ssh
Ssl tls ssh
This POODLE Bites: Exploiting The SSL 3.0 Fallback
This POODLE Bites: Exploiting The SSL 3.0 Fallback
Download
advertisement