Web Security: An Overview and Current Trend

Websites are the mirrors of the modern IT Age. It is very difficult to find out the areas and sectors where Websites are not using. Initially, only big organizations and multinational companies being uses websites but gradually small organizations and institutions and individuals are also having websites of different kinds and purposes. It is (Website) the collection of resources of different network web resources viz. multimedia, contents, etc and published in one or more servers. In websites domain names, IP addresses are a very important concern. There may be different kinds of websites viz. static, dynamic and in all these abilities to keep a large amount of data. In the recent past, websites increased radically. Due to the wide uses and number of websites, today a huge amount of data stored into the systems and thus their security also becomes an important concerned. Thus, the concept of Web Security or Web Application Security has emerged. Today it is an important concern of Information Technology Security. Web Security is the affairs of security related to the websites, web services and web based applications as a whole. This paper is a kind of review and trend analysis of website and web security. Paper described the basics of web security, the reasons/ threats including various defending mechanism as well. Paper highlighted the challenges and issues as well in a simple context.


Introduction
Web Security is an important concern of IT Security. Information Technology Security is the emerging concept of Security it includes the different security domains and sectors viz. Network Security, Database Security, Web Security and also emerging security concerns such as Cloud Security, Mobile Security, IoT Security, etc [1], [5]. As far as Web Security is concerned, it includes the applications of appropriate tools, techniques, and procedure to maintain the security of the websites, web applications, web services, etc. There are different reasons for the security threats and among these few important are include SQL Injection, Password breach, Remote file injection, code injection, etc [2], [3]. In an advanced level, Web Security is concern about the principles of application security with special reference to the websites and internet systems. Secure web application development needs healthy and planned security checkpoints as well as techniques at the early stages of development. Moreover, it is required throughout the software development lifecycle of the system or software development.

Objective and Agenda
The present paper is conceptual and theoretical in nature and it is mainly conducted to deal with the following- To learn about the basics of the web including generations and types in a basic and simple manner.  To learn about the basics of Websites as well as Web Security in a simple and general context.  To know about the basic security related threats in connection to Web Security, Web Services and Applications.  To learn about the trends in threats of Web Security and also various security technologies in the simple and basic sense.  To learn about the currents challenges, issues in respect of Web Security as well.

Web Security: The Root
The Web Security mainly concern with the Websites. It should be very clear that Web Security is the part of IT Security. And there are different other security areas in the IT Security viz. Network Security, Database Security, Web Security and also sub fields like Cloud Security, Mobile Security, IoT Security [4], [7]. Initially, there was a very limited number of websites but a gradually various and large number of websites have been developed internationally and this is increasing with other facets viz. web application security, web services, etc. Today most of the commercial organizations, institutions are doing well in saving their data and contents into the websites and thus it is very important that proper security should be provided into the systems. As we are aware that there are two major websites viz. Static and Dynamic and among these two Dynamic are much more active and multiple services based and thus their security is an important concern here as well. In common computer systems, Internet Security Pack or Web Security Pack is noticeable and its uses are increasing rapidly.

Web Security: Allied Concepts
There are different concepts related to the Web Security and among these important are Web Services Security, Web Applications Security, Web IT Security, etc. The Web Security should be very close with the Database and Network Security; as these are connected each other. There are different concepts in Web Security viz.- It is worthy to note that, the maximum number of Web Security requires in the places of cross site scripting, SQL Injections, etc (Refer Table: 1 for more details; source Cenzic// Wikipedia). There are different security backups protocols and guidelines etc [8], [10], [12].

.0 and Attacks
The development of websites has been mapped with the generation the first of its kind treated as Web 1.0, Web 1.5, Web 2.0. The nature of Web 1.0 is basically having the nature of standalone but Web 2.0 is kind of active and dynamic in which people can be entered into the web systems. This is current age major websites; this is may also be called as Participatory Web, Social Web as well [7], [9], [11]. Website security is a kind of techniques and critical component that protects websites as well as servers. Website vulnerabilities can be checked using website security software for scanning backdoor hacks, redirect hacks, worms, viruses, Trojans, etc. Such security software notifies regarding the issues as well as the solutions [14], [16], [17].

Security Management &Websites: The Trends
Website security is possible to bring by the different strategies and techniques and among them, few important are include- Moreover, it is worthy to note that website and complete web security is needed for various reasons viz. Web Sites Security Issues as it holds huge sensitive data. Insecure coding and multiple dynamic attributes without proper planning lead the security issue. So, it is important to design the websites such as a way in which security is highly paid. Many websites are these days offer visitor involvement by chatting, online communication and feedback, etc and it is important that an appropriate policy should be undertaken into this [13], [15].

Conclusion
Today most of the organizations and institutions are using Enterprise Networks and their huge vulnerability can be an important issue for the websites and similar objects. The network, the server and the website when get connected together then the chances for vulnerabilities also become high and thus there is a requirement in the malware scanning and removal, spam monitoring, security monitoring, content delivery network, advanced DDoS mitigation, hack removal, etc for better services. The organizations and institutions of a different kinds thus should proper step for the promotion of security related awareness, technicalities for the secure and sophisticated web services.