all InfoSec news
OpenAPI Specification Extended Security Scheme: A method to reduce the prevalence of Broken Object Level Authorization. (arXiv:2212.06606v1 [cs.CR])
Dec. 14, 2022, 2:10 a.m. | Rami Haddad, Rim El Malki
cs.CR updates on arXiv.org arxiv.org
APIs have become the prominent technology of choice for achieving
inter-service communications. The growth of API deployments has driven the
urgency in addressing its lack of security standards. API Security is a topic
for concern given the absence of standardized authorization in the OpenAPI
standard, improper authorization opens the possibility for known and unknown
vulnerabilities, which in the past years have been exploited by malicious
actors resulting in data loss. This paper examines the number one vulnerability
in API Security: …
authorization broken object level authorization object openapi openapi specification security
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)