Home > Tutorials > PHP Tutorials

PHP Security-Minimized exposure

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >


Minimization of exposure

PHP applications require frequent communication between PHP and external data sources. The primary external data source is the client browser and database. If you track the data correctly, you can determine which data is exposed. The internet is the primary source of exposure because it is a very public network, and you must always be careful to prevent data from being exposed to the Internet.

Data exposure does not necessarily imply a security risk. However, data exposure must be minimized as far as possible. For example, when a user enters the payment system and transmits his credit card data to your server, you should use SSL to protect it. If you want to display his credit card number on a confirmation page, because the card number information is sent to his client by the server, you also need to use SSL to protect it.

As an example of the previous section, showing the credit card number obviously increases the chance of exposure. SSL does reduce risk, but the best solution is to completely eliminate risk by showing only the last four digits.

To reduce exposure to sensitive data, you must identify what data is sensitive, track it, and eliminate all unnecessary data exposure. In this book, I'll show you some tips to help you protect your many common sensitive data.

The above is the PHP security-exposure minimized content, more relevant content please pay attention to topic.alibabacloud.com (www.php.cn)!

    • This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

    Related Keywords:
    password security php php 5 4 security php api security php application security php curl security php security checklist php security flaws

    Contact Us

    The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

    If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

    What's Trending
    Top 10 Tags
    datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
    Top 10 Keywords
    microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

    A Free Trial That Lets You Build Big!

    Start building with 50+ products and up to 12 months usage for Elastic Compute Service

    Get Started for Free

    • Sales Support

      1 on 1 presale consultation

      Chat Contact Sales

    • After-Sales Support

      24/7 Technical Support 6 Free Tickets per Quarter Faster Response

      Open a Ticket

    • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

      Learn More