Minimization of exposure
PHP applications require frequent communication between PHP and external data sources. The primary external data source is the client browser and database. If you track the data correctly, you can determine which data is exposed. The internet is the primary source of exposure because it is a very public network, and you must always be careful to prevent data from being exposed to the Internet.
Data exposure does not necessarily imply a security risk. However, data exposure must be minimized as far as possible. For example, when a user enters the payment system and transmits his credit card data to your server, you should use SSL to protect it. If you want to display his credit card number on a confirmation page, because the card number information is sent to his client by the server, you also need to use SSL to protect it.
As an example of the previous section, showing the credit card number obviously increases the chance of exposure. SSL does reduce risk, but the best solution is to completely eliminate risk by showing only the last four digits.
To reduce exposure to sensitive data, you must identify what data is sensitive, track it, and eliminate all unnecessary data exposure. In this book, I'll show you some tips to help you protect your many common sensitive data.
The above is the PHP security-exposure minimized content, more relevant content please pay attention to topic.alibabacloud.com (www.php.cn)!