Ecommerce Security   «Prev 

Securing resources

In the context of computer networking, an (ALG) application-level gateway consists of a security component that augments a firewall or NAT employed in a computer network. It allows customized NAT traversal filters to be plugged into the gateway to support address and port translation for certain application layer "control/data" protocols such as
  1. FTP,
  2. BitTorrent,
  3. SIP,
  4. RTSP,
  5. file transfer in IM applications.
In order for these protocols to work through NAT or a firewall, either the application has to know about an address/port number combination that allows incoming packets, or the NAT has to monitor the control traffic and open up port mappings dynamically as required. Legitimate application data can thus be passed through the security checks of the firewall or NAT that would have otherwise restricted the traffic for not meeting its limited filter criteria.

Securing resources
1) packet filtering router and an application gateway firewall should separate the trusted network from the Internet.
2) Web server communicates with the outside world via SSL

Location 1 A packet filtering router and an application gateway firewall should separate the trusted network from the Internet. These enforce access control as well as encryption and authentication. Intrusion detection software should be installed on the Web server and database.
Location 2 The Web server communicates with the outside world via SSL. The Web server and database should be communicating with each other via a different protocol than TCP/IP, such as IPX/SPX or NetBEUI, to help ensure the security of the database.