Application Programming Interface (API) Security in Cloud Applications
Many cloud services utilize an API gateway, which enables them to be offered to users through API platforms such as Platform as a Service (PaaS), Software as a service (SaaS), Infrastructure as a Service (IaaS) and cross-platforms APIs. APIs are designed for functionality and speed by developers who...
Uložené v:
| Vydané v: | EAI endorsed transactions on cloud systems Ročník 7; číslo 23; s. e1 |
|---|---|
| Hlavný autor: | |
| Médium: | Journal Article |
| Jazyk: | English |
| Vydavateľské údaje: |
Ghent
European Alliance for Innovation (EAI)
17.10.2023
|
| Predmet: | |
| ISSN: | 2410-6895, 2410-6895 |
| On-line prístup: | Získať plný text |
| Tagy: |
Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
|
| Abstract | Many cloud services utilize an API gateway, which enables them to be offered to users through API platforms such as Platform as a Service (PaaS), Software as a service (SaaS), Infrastructure as a Service (IaaS) and cross-platforms APIs. APIs are designed for functionality and speed by developers who write a small portion of code, which has visibility and is secure. The code that is created from third-party software or libraries has no visibility, which makes it insecure. APIs are the most vulnerable points of attack, and many users are not aware of their insecurity. This paper reviews API security in cloud applications and discusses details of API vulnerabilities, existing security tools for API security to mitigate API attacks. The author’s study showed that most users are unaware of API insecurity, organizations lack resources and training to educate users about APIs, and organizations depend on the overall security of the network instead of the security of standalone APIs. |
|---|---|
| AbstractList | Many cloud services utilize an API gateway, which enables them to be offered to users through API platforms such as Platform as a Service (PaaS), Software as a service (SaaS), Infrastructure as a Service (IaaS) and cross-platforms APIs. APIs are designed for functionality and speed by developers who write a small portion of code, which has visibility and is secure. The code that is created from third-party software or libraries has no visibility, which makes it insecure. APIs are the most vulnerable points of attack, and many users are not aware of their insecurity. This paper reviews API security in cloud applications and discusses details of API vulnerabilities, existing security tools for API security to mitigate API attacks. The author’s study showed that most users are unaware of API insecurity, organizations lack resources and training to educate users about APIs, and organizations depend on the overall security of the network instead of the security of standalone APIs. |
| Author | Qazi, Farhan |
| Author_xml | – sequence: 1 givenname: Farhan surname: Qazi fullname: Qazi, Farhan |
| BookMark | eNp1kE1LAzEQhoNUsNbePQa86GFrPnY3ybEUqwXBgnoOaZqUlG2yJlmh_95t66EIHoYZZt53ZniuwcAHbwC4xWhSYsQfjck6Tb6ZI3RCEcYXYEj6QVFzUQ3O6iswTmmLECJM9L16CObTtm2cVtkFD5cxbKLa7ZzfwIXPJlqlDbyfLhcP8N3oLrq8h87DWRO6NTxzphtwaVWTzPg3j8Dn_Olj9lK8vj0vZtPXQuOK46JmaMV1SXFVI0r5ilmkuNHE2pKTyhqkxcogYtdGEC5YbTU2XFBSIrbmlbB0BO5Oe9sYvjqTstyGLvr-pKSEEd4HqXpVfVLpGFKKxkrt8vHRHJVrJEbygE0esckjNnnA1hvRH2Mb3U7F_f-WH7T9csk |
| CitedBy_id | crossref_primary_10_3390_su162310192 crossref_primary_10_38124_ijisrt_25jun154 |
| ContentType | Journal Article |
| Copyright | 2023. This work is published under https://creativecommons.org/licenses/by-nc-sa/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License. |
| Copyright_xml | – notice: 2023. This work is published under https://creativecommons.org/licenses/by-nc-sa/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License. |
| DBID | AAYXX CITATION 8FE 8FG ABUWG AFKRA ARAPS AZQEC BENPR BGLVJ CCPQU COVID DWQXO GNUQQ HCIFZ JQ2 K7- P62 PHGZM PHGZT PIMPY PKEHL PQEST PQGLB PQQKQ PQUKI PRINS |
| DOI | 10.4108/eetcs.v7i23.3011 |
| DatabaseName | CrossRef ProQuest SciTech Collection ProQuest Technology Collection ProQuest Central (Alumni) ProQuest Central UK/Ireland ProQuest Advanced Technologies & Aerospace Collection ProQuest Central Essentials ProQuest Central Technology Collection ProQuest One Community College Coronavirus Research Database ProQuest Central ProQuest Central Student SciTech Premium Collection ProQuest Computer Science Collection Computer Science Database (ProQuest) ProQuest Advanced Technologies & Aerospace Collection ProQuest Central Premium ProQuest One Academic Publicly Available Content Database ProQuest One Academic Middle East (New) ProQuest One Academic Eastern Edition (DO NOT USE) ProQuest One Applied & Life Sciences ProQuest One Academic (retired) ProQuest One Academic UKI Edition ProQuest Central China |
| DatabaseTitle | CrossRef Publicly Available Content Database Advanced Technologies & Aerospace Collection Computer Science Database ProQuest Central Student Technology Collection ProQuest One Academic Middle East (New) ProQuest Advanced Technologies & Aerospace Collection ProQuest Central Essentials ProQuest Computer Science Collection ProQuest One Academic Eastern Edition Coronavirus Research Database ProQuest Central (Alumni Edition) SciTech Premium Collection ProQuest One Community College ProQuest Technology Collection ProQuest SciTech Collection ProQuest Central China ProQuest Central ProQuest One Applied & Life Sciences ProQuest One Academic UKI Edition ProQuest Central Korea ProQuest Central (New) ProQuest One Academic ProQuest One Academic (New) |
| DatabaseTitleList | Publicly Available Content Database CrossRef |
| Database_xml | – sequence: 1 dbid: PIMPY name: ProQuest Publicly Available Content Database url: http://search.proquest.com/publiccontent sourceTypes: Aggregation Database |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Computer Science |
| EISSN | 2410-6895 |
| ExternalDocumentID | 10_4108_eetcs_v7i23_3011 |
| Genre | Commentary |
| GroupedDBID | 8FE 8FG AAYXX AFKRA ALMA_UNASSIGNED_HOLDINGS ARAPS BENPR BGLVJ CITATION EN8 HCIFZ K6V K7- M~E PIMPY ABUWG AZQEC CCPQU COVID DWQXO GNUQQ JQ2 P62 PHGZM PHGZT PKEHL PQEST PQGLB PQQKQ PQUKI PRINS |
| ID | FETCH-LOGICAL-c1581-670b8c431560338b7f0a8ec2ff4825fe0c9be02fde928976fc1e8932407d859f3 |
| IEDL.DBID | PIMPY |
| ISSN | 2410-6895 |
| IngestDate | Wed Nov 19 04:27:40 EST 2025 Tue Nov 18 22:17:23 EST 2025 Sat Nov 29 04:47:09 EST 2025 |
| IsDoiOpenAccess | true |
| IsOpenAccess | true |
| IsPeerReviewed | true |
| IsScholarly | true |
| Issue | 23 |
| Language | English |
| License | https://creativecommons.org/licenses/by-nc-sa/4.0 |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-LOGICAL-c1581-670b8c431560338b7f0a8ec2ff4825fe0c9be02fde928976fc1e8932407d859f3 |
| Notes | SourceType-Scholarly Journals-1 ObjectType-Commentary-1 content type line 14 |
| OpenAccessLink | https://www.proquest.com/publiccontent/docview/3272827225?pq-origsite=%requestingapplication% |
| PQID | 3272827225 |
| PQPubID | 4477236 |
| ParticipantIDs | proquest_journals_3272827225 crossref_citationtrail_10_4108_eetcs_v7i23_3011 crossref_primary_10_4108_eetcs_v7i23_3011 |
| PublicationCentury | 2000 |
| PublicationDate | 2023-10-17 |
| PublicationDateYYYYMMDD | 2023-10-17 |
| PublicationDate_xml | – month: 10 year: 2023 text: 2023-10-17 day: 17 |
| PublicationDecade | 2020 |
| PublicationPlace | Ghent |
| PublicationPlace_xml | – name: Ghent |
| PublicationTitle | EAI endorsed transactions on cloud systems |
| PublicationYear | 2023 |
| Publisher | European Alliance for Innovation (EAI) |
| Publisher_xml | – name: European Alliance for Innovation (EAI) |
| SSID | ssj0002794106 |
| Score | 2.234569 |
| Snippet | Many cloud services utilize an API gateway, which enables them to be offered to users through API platforms such as Platform as a Service (PaaS), Software as a... |
| SourceID | proquest crossref |
| SourceType | Aggregation Database Enrichment Source Index Database |
| StartPage | e1 |
| SubjectTerms | Application programming interface Cloud computing Cybersecurity Organizations Software services Software-as-a-service Visibility |
| Title | Application Programming Interface (API) Security in Cloud Applications |
| URI | https://www.proquest.com/docview/3272827225 |
| Volume | 7 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| journalDatabaseRights | – providerCode: PRVHPJ databaseName: ROAD: Directory of Open Access Scholarly Resources customDbUrl: eissn: 2410-6895 dateEnd: 99991231 omitProxy: false ssIdentifier: ssj0002794106 issn: 2410-6895 databaseCode: M~E dateStart: 20150101 isFulltext: true titleUrlDefault: https://road.issn.org providerName: ISSN International Centre – providerCode: PRVPQU databaseName: Computer Science Database customDbUrl: eissn: 2410-6895 dateEnd: 99991231 omitProxy: false ssIdentifier: ssj0002794106 issn: 2410-6895 databaseCode: K7- dateStart: 20220101 isFulltext: true titleUrlDefault: http://search.proquest.com/compscijour providerName: ProQuest – providerCode: PRVPQU databaseName: ProQuest Central customDbUrl: eissn: 2410-6895 dateEnd: 99991231 omitProxy: false ssIdentifier: ssj0002794106 issn: 2410-6895 databaseCode: BENPR dateStart: 20220101 isFulltext: true titleUrlDefault: https://www.proquest.com/central providerName: ProQuest – providerCode: PRVPQU databaseName: ProQuest Publicly Available Content Database customDbUrl: eissn: 2410-6895 dateEnd: 99991231 omitProxy: false ssIdentifier: ssj0002794106 issn: 2410-6895 databaseCode: PIMPY dateStart: 20220101 isFulltext: true titleUrlDefault: http://search.proquest.com/publiccontent providerName: ProQuest |
| link | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwrV3PT8IwFH5R8OBF_BlRJD14kENhlI1uJ4MEIlHJ4q_gadm6NiFBQAb8_b5uBeTCyfPaZOn3-t77Xtv3Ady6VuzYUrpUsjCkNosdqluA0CaLbM-WIpKp1uHnM-_33cHA883z6MRcq1z5xNRRZ92e9b1tdMK1eCJ0xbzWYBy5AkdjvJ_-UK0hpc9ajaDGPuR14y0rB3m_9-J_rWsuDI0PKVB2WmlrARyJa5NUl3zIGlVt6tvRads5pxGnW_jffz2GI5N5klZmKiewJ8enUFipOhCzyc-g29qcaRM_u771jQGOpMVDFQpJ7lp-r0LejPQdGY5JezRZxOTPzOQcPrqd9_YjNWoLVNQdt06b3IpcgfkE5kDIWyOurNCVgillI4tU0hJeJC2mYukhSeNNJeoSkx3NCGPX8VTjAnLjyVheAmkiy3MFw7Eh-oQwjHRXwYgpJEuOQByKUFutciBMK3KtiDEKkJJoXIIUlyDFJdC4FKGynjHN2nDsGFtaoRKYDZkEGxCudn--hkOtKK_DU52XIDefLeQNHIjlfJjMypB_6PT91zLsP3FaNvb1CwRU32k |
| linkProvider | ProQuest |
| linkToHtml | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMw1V3JTsMwEB1BiwQXdsRSwAeQ6CFt4mY9IFQBVasuikRB5RQSx5YqlRRIKeKn-EbGWQpceuuBc-xI8ZvM8_MyD-DMVkND59xWOPV9RaehocgSIIpJA93ROQt44nX40LF6PXswcNwl-MrvwshjlXlOTBJ1OGZyjbxaoxaqAwvD7-rlVZGuUXJ3NbfQSMOizT8_ULLFl60bxPec0sZt_7qpZK4CCtMMW1NMSw1shryJXI_6LLCE6tucUSF0VEuCq8wJuEpFyB0UI5YpmMaR1KXyCW3DETV87zIUdQx2tQBFt9V1H2erOhTDG0VWuh-qS4sdjqMfV6bWkNYq8mf6y39_03_CaY2N_zYam7CezZ5JPQ33LVji0TZs5M4UJEtUO9Co_-zLEzc9gvaMJE2SBVDhM04u6m6rTO4y-z4yjMj1aPwekl894124X8jX7EEhGkd8H4iJStVmFNv6mNd8P5CVEQMqUPAZDJE-gGqOo8eycurS1WPkoaySyHsJ8l6CvCeRP4DyrMdLWkpkTttSjruXJZXY-wH9cP7jU1ht9rsdr9PqtY9gjeK8TNKtZpWgMHl758ewwqaTYfx2ksUvgadFB8k34P8ssw |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=Application+Programming+Interface+%28API%29+Security+in+Cloud+Applications&rft.jtitle=EAI+endorsed+transactions+on+cloud+systems&rft.au=Qazi%2C+Farhan&rft.date=2023-10-17&rft.pub=European+Alliance+for+Innovation+%28EAI%29&rft.eissn=2410-6895&rft.volume=7&rft.issue=23&rft.spage=e1&rft_id=info:doi/10.4108%2Feetcs.v7i23.3011 |
| thumbnail_l | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/lc.gif&issn=2410-6895&client=summon |
| thumbnail_m | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/mc.gif&issn=2410-6895&client=summon |
| thumbnail_s | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/sc.gif&issn=2410-6895&client=summon |