From 3fc934ab7461fb9cfffd4ac858cfdb90fe1b1969 Mon Sep 17 00:00:00 2001 From: marcinzelent Date: Thu, 17 May 2018 00:26:15 +0200 Subject: Started writing about AppSec importance --- synopsis.pdf | Bin 123915 -> 124778 bytes synopsis.tex | 4 ++++ 2 files changed, 4 insertions(+) diff --git a/synopsis.pdf b/synopsis.pdf index 0ba8b79..eaa6f6d 100644 Binary files a/synopsis.pdf and b/synopsis.pdf differ diff --git a/synopsis.tex b/synopsis.tex index a7d0fcb..9592c66 100644 --- a/synopsis.tex +++ b/synopsis.tex @@ -93,6 +93,10 @@ Other common targets are mobile and desktop applications, with the emphasis on t \subsection{Why application security is important?} +There should be no doubt about the importance of application security. There are many reasons for that. + +First and most important is the risk of unwanted disclosure of sensitive data to the attackers, if the application becomes compromised. This could include names, addresses, login credentials, credit card information, bank account details, private photos and many more information about the users of the system. By breaking into the unprotected system, attackers could also gain access to company's internal data: important documents, list of employees, private keys and passwords. All this information could be useful for them in various ways. For example, it could be used to buy things or perform financial operations without the knowledge of the account owner. The data could be sold on the black market or published on the internet. It could be used to harass or blackmail the unfortunate users. Attackers could also impersonate them and cause even more problems. It could be especially dangerous when pretending to be a corporate worker as their actions could harm the entire business. + \section{Conclusion} \section{Reflection} -- cgit v1.2.3