The security measures taken to protect a website from attack, which may be launched to cripple the site (see
denial of service) or to extract valuable data. See
white box testing,
black box testing,
XSS,
SQL injection,
penetration test and
OWASP.