Abstract

Security misconfigurations present serious trouble when security settings are not properly defined and implemented and default values are retained. Usually, this means the configuration settings do not comply with industry security standards such as the Center for Internet Security (CIS) benchmarks, OWASP Top 10 etc, which are critical to ensuring smooth business continuity, security maintenance and a reduction in business risk. 1,2 Security misconfigurations present serious trouble when security settings are not properly defined and implemented and default values are retained. For a seasoned cyber criminal, misconfigurations present easy targets, as it's often simple to detect misconfigured web servers, cloud instances and applications, which then become exploitable. Sergio Loureiro of SecludIT explains that it's important to ensure that your technology stack is built with security by design.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Systematic literature review on security misconfigurations in web applications
Samuel Luna Martins ... Carlo Marcelo Revoredo Da Silva
International Journal of Computers and Applications | VOL. 46
Samuel Luna Martins, et. al.Samuel Luna Martins ... Carlo Marcelo Revoredo Da Silva
17 Aug 2024
Automatic Detection of Security Misconfigurations in Web Applications
Sandra Kumi ... Chaeho Lim
-
Sandra Kumi, et. al.Sandra Kumi ... Chaeho Lim
28 Nov 2020
Bidding With Securities: Auctions and Security Design
Peter Demarzo ... Ilan Kremer
-
Peter Demarzo, et. al.Peter Demarzo ... Ilan Kremer
01 Nov 2004
Efficient web application vulnerabilities detection Model
Premanand Ghadekar ... Vijay Gaikwad
-
Premanand Ghadekar, et. al.Premanand Ghadekar ... Vijay Gaikwad
14 Jun 2022
View more papers

More From: Network Security

Paper Title
Journal
Date
Author
The burden of keeping passwords secret
Karen Renaud
Network Security | VOL. -
Karen RenaudKaren Renaud
01 Jun 2024
Is new legislation the answer to curbing cybercrime?
Vincent Lomba
Network Security | VOL. -
Vincent LombaVincent Lomba
01 Jun 2024
Ensuring that cyber security is fit for the future of manufacturing
Dominic Carroll
Network Security | VOL. -
Dominic CarrollDominic Carroll
01 Jun 2024
Forging identity in the cloud – dissecting Silver SAML
Tomer Nahum ... Eric Woodruff
Network Security | VOL. 2024
Tomer Nahum, et. al.Tomer Nahum ... Eric Woodruff
01 May 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.