Continuing my series on the ISO OSI layers, I am discussing Layer 7 Application Layer today. The Application Layer 7 supports application and end-user processes. Some of the most crucial functions performed by this layer are

- identification of communication partners
- identification of quality of service
- user authentication in the application
- data syntax

One thing to note is that everything in this layer is application specific.This layer provides application services for file transfers, e-mail, and other network software services. Telnet and FTP are applications that exist entirely in the application level. Tiered application architectures are part of this layer. The application layer has its share of vulnerabilities such as wrong programming logic in application, backdoors in application, design issues, weak user authentication etc. To look on the positive side, controls such as strong authentication, intrusion detection systems to monitor traffic, firewalls, strong access controls, testing of application code etc help in overcoming the vulnerabilities present in the application layer.

More on Information Security >>

7 Steps to Better Security
Anatomy of a Strong Security Program
Evaluating an ERP
Internet Security