Internet security is a branch of computer security specifically related to the Internet, often involving browser security but also network security on a more general level as it applies to other applications or operating systems on a whole. Its objective is to establish rules and measures to use against attacks over the Internet.
Web applications development are very different from other environments. Web browsers and the nature of HTTP pose security pitfalls not found in traditional client-server applications.
At ZipTeq our web developers know how web servers and browsers interact, the nature of Internet communications, and the attacks web applications undergo on the Internet.
Zipteq is the only Caribbean web development company to have built financial applications for three Caribbean institutions that have passed the most rigourous 1st world security checks.
High-level Security Principles Used
A few of the reference points used when designing systems.
Validate Input and Output
User input and output to and from the system is the route for malicious payloads into or out of the system. All user input and user output should be checked to ensure it is both appropriate and expected.
This is the process of determining caller identity.
Fail Securely (Closed)
Any security mechanism should be designed in such a way that when it fails, it fails closed.
Only as Secure as the Weakest Link
Attackers will find the weakest point and attempt to exploit it.
“I think computer viruses should count as life. I think it says something about human nature that the only form of life we have created so far is purely destructive. We’ve created life in our own image.”
– Stephen Hawking