Hi, I have a question and I hope anyone could answer it:
1.Although traditional network security devices can block traditional network attacks, they cannot always block web application attacks
2.The processors on clients are smaller than on web servers and thus they are easier to defend
3.Many web application attacks exploit previously unknown vulnerabilities
4. By design dynamic server-side web applications accept user input that can contain malicious code.