This resource is no longer available
Protecting Your APIs Against Attack & Hijack
Application programming interface (API), a technology for integrating applications using Web technology. Leveraging well-understood techniques and existing infrastructure, API adoption is a logical step to help companies with efficient integration.
How can your organization address threat vectors, both from the conventional Web as well as a new class of risk brought about by the differences between API and Web sites?
This white paper identifies these threats, both old and new, and provides clear solutions to address them including:
- Parameter attacks that exploit data sent into an API
- Identity attacks that exploit flaws in authentication, authorization and session tracking
- Interception of legitimate transactions to exploit unencrypted data
- And more