PHP applications require frequent communication between PHP and external data sources. The main external data sources are client browsers and databases. If you track the data correctly, you can determine which data was exposed. The Internet is the primary source of exposure because it is a very public network and you must always be careful to prevent data from being exposed on the Internet.
Data exposure does not necessarily mean a security risk. However, data exposure must be minimized as much as possible. For example, when a user enters a payment system and transmits his credit card data to your server, you should use SSL to protect it. If you want to display his credit card number on a confirmation page, since the card number information is sent from the server to his client, you must also use SSL to protect it.
Returning to the example from the previous section, credit card numbers clearly increase the chance of exposure. SSL does reduce the risk, but the best solution is to completely eliminate the risk by only displaying the last four digits.
To reduce exposure to sensitive data, you must identify what data is sensitive, track it, and eliminate any unnecessary data exposure. In this book, I'll show you some techniques to help you protect many common types of sensitive data.
The above is the content of PHP security-exposure minimization. For more related content, please pay attention to the PHP Chinese website (www.php.cn)!