Professional Documents
Culture Documents
Tutorial – 11
March 2022
ITAP3012 Tutorial 11
Questions
1. What are the principles of layering for a good web application design? Discuss the common layering
schemes with examples.
5. Security becomes a very important aspect in web development due to ever-changing threat scenarios.
Discuss the difference between Information security and information assurance?
6. What are the main components of the CIA triad and explain each in detail?
7. Risk assessment is a very important step to improve the security of the system. Discuss the concepts used
in risk assessment.
9. In a web application, what are the different strategies are used for authentication. Briefly explain each of
the authentication strategies.
10. What are the common threat vectors for web applications? Briefly explain each threat vector and how
we can defend against them.