GCIH · Question #528
You want to ensure that the data that is returned to your web server during an online transaction is the same data that was sent to the customer. You have found several vendors offering software that
The correct answer is D. Reverse proxy between the web server and the Internet. Defenders can use proxy tools to help defend against these attacks. The AppShield and Interdo tools sit in front of a web application and look for incoming requests where an attacker manipulated a cookie or other state element that is supposed to remain static. They also look for
Question
You want to ensure that the data that is returned to your web server during an online transaction is the same data that was sent to the customer. You have found several vendors offering software that can detect change and reset it if needed. Where would you place this technology?
Options
- AProxy between your web server and your internal network
- BStateful firewall between your web server and the Internet
- CProxy server between your users and the Internet
- DReverse proxy between the web server and the Internet
How the community answered
(23 responses)- A4% (1)
- B4% (1)
- C13% (3)
- D78% (18)
Explanation
Defenders can use proxy tools to help defend against these attacks. The AppShield and Interdo tools sit in front of a web application and look for incoming requests where an attacker manipulated a cookie or other state element that is supposed to remain static. They also look for other suspicious behavior. These tools work against standard web manipulation.
Topics
Community Discussion
No community discussion yet for this question.