Security assurance is the confidence that a system meets its security requirements, based on specific evidences that an assurance technique provide. In this thesis, I have proposed a quantification method which aims to develop security assurance profiles by measuring the level of security of a REST API. The notion of measuring security is complex and tricky, existing approaches are often based on manual review and time consuming tasks. In addition, there is little research work done on quantification of security assurance for REST APIs. A common perspective has been to focus on the vulnerabilities of a system while security testing. However, security requirements are not tend to get enough attention during a security test. The main approa...
Addressing security in early stages of web service development has always been a major engineering t...
Application Programming Interfaces (APIs) are a vital link between software components as well as be...
This paper addresses the challenge of measuring security, understood as a system property, of cyberp...
Security assurance is the confidence that a system meets its security requirements based on specific...
In the modern Internet era, web applications are typically driven by web services (WS). Web services...
Modern web applications and software systems have shifted to relying on RESTful APIs, which are more...
Nowadays, there are more sources of cyber-threats and more cyber-attacks that target all kind of vic...
Security Assurance is commonly defined as the ground for confidence on the security mechanisms to me...
Evaluating the software assurance of a product as it functions within a specific system context invo...
A security API is an Application Program Interface that allows untrusted code to access sensitive re...
This paper presents an overview about the evaluation of risks and vulnerabilities in a web based dis...
Web security has been a concern given how often people access web applications be it for work or lei...
Web Application Programming Interfaces (APIs) consist of one or many endpoints defining request-resp...
How secure is your application? How can you evaluate if it is secure? The threats are many and may b...
Security assurance (SA) is a technique that helps organizations to appraise the trust and confidence...
Addressing security in early stages of web service development has always been a major engineering t...
Application Programming Interfaces (APIs) are a vital link between software components as well as be...
This paper addresses the challenge of measuring security, understood as a system property, of cyberp...
Security assurance is the confidence that a system meets its security requirements based on specific...
In the modern Internet era, web applications are typically driven by web services (WS). Web services...
Modern web applications and software systems have shifted to relying on RESTful APIs, which are more...
Nowadays, there are more sources of cyber-threats and more cyber-attacks that target all kind of vic...
Security Assurance is commonly defined as the ground for confidence on the security mechanisms to me...
Evaluating the software assurance of a product as it functions within a specific system context invo...
A security API is an Application Program Interface that allows untrusted code to access sensitive re...
This paper presents an overview about the evaluation of risks and vulnerabilities in a web based dis...
Web security has been a concern given how often people access web applications be it for work or lei...
Web Application Programming Interfaces (APIs) consist of one or many endpoints defining request-resp...
How secure is your application? How can you evaluate if it is secure? The threats are many and may b...
Security assurance (SA) is a technique that helps organizations to appraise the trust and confidence...
Addressing security in early stages of web service development has always been a major engineering t...
Application Programming Interfaces (APIs) are a vital link between software components as well as be...
This paper addresses the challenge of measuring security, understood as a system property, of cyberp...