The process of securing confidential information online from unauthorized access is the core theme of web application security. Developers and administrators accomplish this by enforcing stringent policies and controls. But, why is security necessary for the web application?