Join Kevin Skoglund for an in-depth discussion in this video Denial of service, part of Programming Foundations: Web Security.
- A denial-of-service attack denies authorized … users access to a server, service, or resource … to which they would normally expect to have access. … Denial of service is an attempt to prevent … legitimate users from using a service. … The underlying service may remain unaffected … but it's no longer available. … Remember, data security has three goals: … confidentiality, integrity, and availability. … Denial of service is an attack on data availability. … Denial-of-service attacks usually use flooding … or crashing to make data unavailable. … Flooding is when a system is overwhelmed … with too many requests. … It could be too many requests to a web server, … it could be using up a limited number … of connections to a database, or it could be sending … so many data packets to a router that legitimate … traffic slows to a crawl. … Crashing is when software or hardware crashes … and stops operating. … For example, an attacker could use … a vulnerability to trigger a memory buffer … overflow and use up all server memory. …
- Threat models
- Least privilege
- Defense in depth
- Validating and sanitizing input
- Credential attacks
- SQL injection
- Cross-site scripting
Skill Level Beginner
Web Programming Foundationswith Morten Rand-Hendriksen58m 44s Beginner
Web Security: Same-Origin Policieswith Sasha Vodnik1h 54m Advanced
1. Security Overview
2. General Security Principles
3. Filter Input, Control Output
4. The Most Common Attacks
Next steps2m 26s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.