Threat analysis of web-applications based on REST architecture
DOI: 10.31673/2409-7292.2022.012733
DOI:
https://doi.org/10.31673/2409-7292.2022.012733Abstract
The paper analyzes the problem of cybersecurity of Web-applications, defines the purpose and objectives for securing Web-applications. The analysis of vulnerabilities of Web-applications is carried out. Based on the research conducted in the work, recommendations for the use of methods for protecting Web-applications have been developed.
Keywords: cybersecurity, information system, rest, information system, web-application.
References
1. REST API Definition: What is a REST API (RESTful API)? [Електронний ресурс] // Tehreem Naeem. – 2021. – Режим доступу до ресурсу: https://www.astera.com/type/blog/rest-api-definition.
2. Why Should We Choose REST (Client-Server) Model to Develop Web Apps? [Електронний ресурс] // Audira Zuraida. – 2018. – Режим доступу до ресурсу: https://medium.com/@audira98/why-should-we-choose-restclient-server-model-to-develop-web-apps-c3bb2451b13a.
3. What is REST [Електронний ресурс] // Code Academy. – 2020. – Режим доступу до ресурсу: https://www.codecademy.com/articles/what-is-rest.
4. State of the API Report // Postman. – 2020.
5. What is REST – A Simple Explanation for Beginners, Part 2: REST Constraints [Електронний ресурс] // Shif Ben Avraham. – 2017. – Режим доступу до ресурсу: https://medium.com/extend/what-is-rest-a-simpleexplanation-for-beginners-part-2-rest-constraints-129a4b69a582.
6. OWASP Top 10: Injection Security Vulnerability Practical Overview [Електронний ресурс] // ImmuniWeb. – 2018. – Режим доступу до ресурсу: https://www.immuniweb.com/blog/OWASP-SQL-injectionattack.html.
7. Cross Site Scripting Prevention Cheat Sheet [Електронний ресурс] // Owasp. – 2020. – Режим доступу до ресурсу: https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html.
