SOFTWARE ENGINEERING TOOLS AND ENVIRONMENTS
AUTOMATED TESTING TOOLS
Question
[CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]
|
About REST security, choose the correct sentence:
|
Security Misconfigurations does not have impact on REST APIs as this is a secure architecture.
|
|
REST APIs as long as are within an HTTPS layer are fully secure
|
|
Common threats to REST APIs include:SQL injection, cross-site scripting, and security misconfigurations
|
|
SQL injections are easily solved by adding an authentication layer within our API architecture
|
Explanation:
Detailed explanation-1: -The parameters are not standard, it may be part of URL or may be a constant header. REST APIs are vulnerable to common and well known OWASP attacks such as injection, CSRF, Cross site script, XMLExternalEntity, etc.
Detailed explanation-2: -DoS/DDoS (Distributed Denial of Service) Attacks. Injection Attacks. Authentication Hijacking. Cross-sie scripting (XSS) Parameter Tampering. Man in the Middle (MitM) Credential stuffing. Application Abuse. More items
There is 1 question to complete.