Chapter 4
Application, Data, and Host Security
COMPTIA SECURITY+ EXAM OBJECTIVES COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:
- 4.1 Explain the importance of application security.
- Fuzzing
- Secure coding concepts
- Error and exception handling
- Input validation
- Cross-site scripting prevention
- Cross-site Request Forgery (XSRF) prevention
- Application configuration baseline (proper settings)
- Application hardening
- Application patch management
- 4.2 Carry out appropriate procedures to establish host security.
- Operating system security and settings
- Anti-malware
- Anti-virus
- Anti-spam
- Anti-spyware
- Pop-up blockers
- Host-based firewalls
- Patch management
- Hardware security
- Cable locks
- Safe
- Locking cabinets
- Host software baselining
- Mobile devices