InSecure Design Vulnerabilities: What are they and Why they Occurs
Introduction
Designing an application securely requires a lot of effort and if the application is not designed properly it might create security issues such as vulnerabilities like SQLi or Open S3 Buckets. These vulnerabilities exist because of design and architectural flaws. When a project team designs an application whether it is a webapp or android, they do not consider the security aspect of them until it has been implemented and a vulnerability gets reported to them whether by an external researcher or a bug bounty program. In a later stage when team performs the “shift left” testing they may find some of the issues and problem related to the design such as the neglection of implementing a firewall or adding input validations to the application
What are insecure Design Vulnerabilities?
As the name indicates “insecure design”, are those vulnerabilities that exist due to lack of security implementation in an application at the time of…