We are grappling with how best to architect our back end servers for best security. I think one of best practices is to separate your web server/s from your internal network (in their own DMZ) but other than that how far do you need to go? I would love to
find a best practice type document i could present to my company. For example do you let your web servers call your database directly or do you make it go through another layer like a REST service that way if anyone ever took over that web server then they
wouldn't have access to the precious database? Of course that makes it hard for today's interactive pages that are heavily based on javascript.
I understand as you try to scale your site you definitely will need more than the web server itself but from a security perspective if you end up needing a rest service does it make it more secure if you place your service with your api in its own dmz that
doesn't have internet access? Any somewhat official documents ...
Go to the complete details ...