Question

You have an e-commerce application that needs to be implemented. Implementing the application includes allowing access to external users on the Internet. You want to ensure the application is protected from cross-site scripting (XSS) and SQL injection. You also want to prevent OSI Layer 7 traffic. To meet the criteria in the scenario, which of the following should you implement along with the application? a) Intrusion Detection System (IDS) b) Firewall at the network perimeter c) Application Firewall d) Virtual Private Network (VPN)

Answer 1

In order to protect the e-commerce application from XSS, SQL injection, and prevent OSI Layer 7 traffic, implementing an Application Firewall (Option C) is recommended. So, the correct answer is b) Firewall at the network perimeter

Step-by-step explanation:

In order to protect the e-commerce application from cross-site scripting (XSS) and SQL injection, as well as prevent OSI Layer 7 traffic, it is recommended to implement an Application Firewall (Option C) along with the application.

An Application Firewall is specifically designed to monitor and filter traffic at the application layer, identifying and blocking any malicious data or requests.

It can inspect HTTP requests and responses, analyze their content, and apply security rules to prevent XSS and SQL injection attacks.

Unlike a network perimeter Firewall (Option B), which mainly focuses on traffic routing and blocking based on IP addresses and ports, an Application Firewall provides more granular control and protection tailored to web applications.

So, the correct answer is b) Firewall at the network perimeter