===== Application Security ===== [[dido:public:ra:xapend:xapend.a_glossary:start| Return to Glossary ]] **Application Security** is the [[dido:public:ra:xapend:xapend.a_glossary:b:business_process]] of developing, adding, and testing security features within applications to prevent security [[dido:public:ra:xapend:xapend.a_glossary:v:vulnerability | Vulnerabilities]] against cyberthreats such as unauthorized access and modification. Application Security describes security measures in the [[dido:public:ra:xapend:xapend.a_glossary:a:application|Application]] that aim to prevent data or code within the Application from being stolen or hijacked. It encompasses the security considerations that happen during application development and design, but it also involves systems and approaches to protect Applications after deployment. **Application Security** may include [[dido:public:ra:xapend:xapend.a_glossary:h:hardware]], [[dido:public:ra:xapend:xapend.a_glossary:s:software]], and [[dido:public:ra:xapend:xapend.a_glossary:b:business_process | Business Processes]] that identify or minimize security [[dido:public:ra:xapend:xapend.a_glossary:v:vulnerability | Vulnerabilities]]. A [[dido:public:ra:xapend:xapend.a_glossary:r:router|router]] that prevents anyone from viewing a computer’s [[dido:public:ra:xapend:xapend.a_glossary:i:ipaddr]] from the [[dido:public:ra:xapend:xapend.a_glossary:i:internet|Internet]] is a form of hardware **Application Security**. But security measures at the [[[[dido:public:ra:xapend:xapend.a_glossary:a:application|application]] (**Note:** NOT to be confused with OSI [[dido:public:ra:xapend:xapend.a_glossary:a:applayer]] or the [[dido:public:ra:xapend:xapend.a_glossary:t:tcp_concept_model]] Application Level) are also typically built into the software, such as an Application [[dido:public:ra:xapend:xapend.a_glossary:f:firewall|firewall]] that strictly defines what activities are allowed and prohibited. Business Processes can entail things like an **Application Security** routine that includes protocols such as regular testing. Source: [[https://www.vmware.com/topics/glossary/content/application-security]]