Assignment: API Security Guidelines
The document should define appropriate application programming interface (API) Security Guidelines for applications (Microservices) that are being developed across a Organization.
-What is API
-API Risks
-API Enumeration
-Fuzzing
-Injection
-OWASP vulnerabilities on API
-API security Best Practices
-Access control(Authorization and authentication)
-Java Based Web Tokens(JWT)
-Implementing API keys
-Restricted HTTP Methods
-Validate content Types
-Send safe content types
-API Endpoints Management
-Proper Input Validation
-Error Handling(Provide an example here: "An error occured" "Your username or -password is wrong")
-Audit logs(Ensure that sensitive application data is not included in the logs)
-Logging
-Monitoring
-Alerting
-Request cannot be sent as headers
-response of JSON objects
-GET vs Post
-API gateways/WAF
-Rate limit checks
Document should be 5000 words (15-20 pages) and put Index on the first page.
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also include a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also Include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.
Attachment:- Reading.rar