REST API Security - REST API and Beyond

Security-first API Design

What is API Security? API security is the application of any security best practice applied to web APIs, which are prevalent in modern applications. API security includes API access control and privacy, as well as the detection and remediation of attacks on APIs through API reverse engineering and the exploitation »

Guy Levin on RestCase, REST API Security, Security-First | 29 March 2021 | 0 COMMENTS

Top 5 Security Issues in Public APIs and How to solve them

One of the features in RestCase is that it scans your API definitions for both Security and Quality issues and shows insights about them. We managed to scan about 50 public APIs and aggregated the results in order to write about the top 5 security issues and how to solve »

Guy Levin on REST API Security, RestCase, Guidelines | 06 December 2020 | 0 COMMENTS

State of API Security

The current age is the age of science and technology. With the advent of modern technology, the problems associated with modern technology have also increased to a great level. Application programming interfaces (APIs) have become all the rage nowadays, with enterprise developers now relying heavily on them to support the »

Guy Levin on REST API Security, RestCase, REST API | 25 October 2019 | 0 COMMENTS

Top 5 OWASP Security Tips for Designing Secured REST APIs

APIs are channels of communications, through which applications can “talk”. To create a connection between applications, REST APIs use HTTPS. HTTP requests pass through the API channel of communication and carry messages between applications. Threat actors target REST APIs because they’re after the data stored in HTTP requests. Threat »

Guy Levin on REST API Security, REST API, RestCase, Guidelines, Design | 25 September 2019 | 0 COMMENTS

REST APIs - How To Handle "Man In The Middle" Security Threat

An API, or Application Programming Interface, is how software talks to other software. Every day, the variety of APIs and the volume of API calls are growing. Every web and mobile application out there is powered by APIs. By nature of the APIs, many of them have a direct line »

Guy Levin on REST API Security, Automated Testing, API, RestCase | 16 August 2019 | 0 COMMENTS

4 Most Used REST API Authentication Methods

While there are as many proprietary authentication methods as there are systems which utilize them, they are largely variations of a few major approaches. In this post, I will go over the 4 most used in the REST APIs and microservices world. Authentication vs Authorization Before I dive into this, »

Guy Levin on RestCase, REST API Security, REST API, OAS, API Driven Development | 26 July 2019 | 0 COMMENTS

TOP 7 REST API Security Threats

Internet security is a topic which has been discussed increasingly quite often by technology blogs and forums and with valid reason: the numerous high profile security breaches have grown up significantly in recent years. Security is of great importance, especially in the world of REST APIs. API security is the »

Guy Levin on REST API Security, RestCase, SugoiJS, REST API Statistics, Guidelines | 09 January 2019 | 0 COMMENTS