Abstract

In recent years, Representational State Transfer or REST-based Web Services have become popular for building Web systems. They have become an integral and critical part of information systems to facilitate and integrate the business processes across the enterprise. However, the simplicity of a REST-based implementation has caused the neglect of its systematic security threat analysis and design. One of the issues of systems built with REST services integration is their susceptibility to JSON input attacks. Such attacks could compromise the integrity of critical data in enterprise business processes. We analyze such a security issue in this paper. Some mechanisms used to secure Web sites and servers, such as encryption via HTTPS, static source code analysis, and input validation, can be integrated to defend against the attack.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Challenges in Securing ESB Against Web Service Attacks
Rizwan Ur Rahman ... Divya Rishi Sahu
-
Rizwan Ur Rahman, et. al.Rizwan Ur Rahman ... Divya Rishi Sahu
01 Jan 2017
Security solutions for Web Service attacks in a dynamic composition scenario
Sindhu S M ... Kanchana R
-
Sindhu S M, et. al. Sindhu S M ... Kanchana R
01 May 2014
Web services, AJAX and mashups
-
14 Oct 2010
Semantic Web Services Discovery Adopting SERIN
Jose Renato Villela Dantas ... Pedro Porfirio Muniz Farias
-
Jose Renato Villela Dantas, et. al.Jose Renato Villela Dantas ... Pedro Porfirio Muniz Farias
01 Oct 2015
View more papers

More From: Communications of the IIMA

Paper Title
Journal
Date
Author
How can Researchers be Influenced to Comply with Guidelines of Research Data Management?
Rowena Van Houwelingen ... Guido Ongena
Communications of the IIMA | VOL. 22
Rowena Van Houwelingen, et. al.Rowena Van Houwelingen ... Guido Ongena
07 Oct 2024
ENHANCING EMAIL SPAM DETECTION THROUGH ENSEMBLE MACHINE LEARNING: A COMPREHENSIVE EVALUATION OF MODEL INTEGRATION AND PERFORMANCE
Najah Al-Shanableh ... Eman Nashnush
Communications of the IIMA | VOL. 22
Najah Al-Shanableh, et. al.Najah Al-Shanableh ... Eman Nashnush
20 Sep 2024
Risk Identification and Mitigation In Agile Software Re-Engineering: A Case Study
Chiara Fasching ... Nicholas Mitchell
Communications of the IIMA | VOL. 22
Chiara Fasching, et. al.Chiara Fasching ... Nicholas Mitchell
20 Sep 2024
Cyber Threat Intelligence Sharing in Nigeria
Muhammad Abubakar Nainna ... Lee Speakman
Communications of the IIMA | VOL. 22
Muhammad Abubakar Nainna, et. al.Muhammad Abubakar Nainna ... Lee Speakman
05 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.