Securing a REST API Server

Nowadays, there are more sources of cyber-threats and more cyber-attacks that target all kind of victim profiles. From big companies with big architectures, to small businesses that only have a web site as a platform to sell or advertise themselves. Hence, the need of security awareness among users,...

Descripción completa

Detalles Bibliográficos
Autor: Mendoza Jiménez, Francisco
Tipo de recurso: tesis de maestría
Fecha de publicación:2022
País:España
Institución:Universitat Politècnica de Catalunya (UPC)
Repositorio:UPCommons. Portal del coneixement obert de la UPC
Idioma:inglés
OAI Identifier:oai:upcommons.upc.edu:2117/377463
Acceso en línea:https://hdl.handle.net/2117/377463
Access Level:acceso abierto
Palabra clave:Computer security
Security
API
Argon2
OWASP
Seguretat informàtica
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
id ES_31cabd9146d061646bb5cecc4fae0171
oai_identifier_str oai:upcommons.upc.edu:2117/377463
network_acronym_str ES
network_name_str España
repository_id_str
spelling Securing a REST API ServerSecuring a REST API Server and its environmentMendoza Jiménez, FranciscoComputer securitySecurityAPIArgon2OWASPSeguretat informàticaÀrees temàtiques de la UPC::Informàtica::Seguretat informàticaNowadays, there are more sources of cyber-threats and more cyber-attacks that target all kind of victim profiles. From big companies with big architectures, to small businesses that only have a web site as a platform to sell or advertise themselves. Hence, the need of security awareness among users, developers and systems administrators, as well as the application of security measures and best practices is mandatory. There are a lots of organisations promoting security recommendations or standardisation of procedures, in order to build more robust applications or infrastructures. The purpose of this thesis is to provide a practical application of those recommendations, sets of best practices and standards, in order to achieve a proper level of security of a common type of application or service, as can be an e-commerce platform. This project can be an example of applying good security measures and basic infrastructure security to try to create more robust applications. Moreover, in this project will be used tools for testing the good application of the security measures, pentesting purposes and for possible vulnerability discovering, which will be documented as well.Universitat Politècnica de CatalunyaLlorente Viejo, Silvia20222022-09-0720222022-11-30master thesishttp://purl.org/coar/resource_type/c_bdccNAhttp://purl.org/coar/version/c_be7fb7dd8ff6fe43info:eu-repo/semantics/masterThesisapplication/pdfhttps://hdl.handle.net/2117/377463reponame:UPCommons. Portal del coneixement obert de la UPCinstname:Universitat Politècnica de Catalunya (UPC)Inglésengopen accesshttp://purl.org/coar/access_right/c_abf2info:eu-repo/semantics/openAccessoai:upcommons.upc.edu:2117/3774632026-05-27T15:37:01Z
dc.title.none.fl_str_mv Securing a REST API Server
Securing a REST API Server and its environment
title Securing a REST API Server
spellingShingle Securing a REST API Server
Mendoza Jiménez, Francisco
Computer security
Security
API
Argon2
OWASP
Seguretat informàtica
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
title_short Securing a REST API Server
title_full Securing a REST API Server
title_fullStr Securing a REST API Server
title_full_unstemmed Securing a REST API Server
title_sort Securing a REST API Server
dc.creator.none.fl_str_mv Mendoza Jiménez, Francisco
author Mendoza Jiménez, Francisco
author_facet Mendoza Jiménez, Francisco
author_role author
dc.contributor.none.fl_str_mv Llorente Viejo, Silvia
dc.subject.none.fl_str_mv Computer security
Security
API
Argon2
OWASP
Seguretat informàtica
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
topic Computer security
Security
API
Argon2
OWASP
Seguretat informàtica
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
description Nowadays, there are more sources of cyber-threats and more cyber-attacks that target all kind of victim profiles. From big companies with big architectures, to small businesses that only have a web site as a platform to sell or advertise themselves. Hence, the need of security awareness among users, developers and systems administrators, as well as the application of security measures and best practices is mandatory. There are a lots of organisations promoting security recommendations or standardisation of procedures, in order to build more robust applications or infrastructures. The purpose of this thesis is to provide a practical application of those recommendations, sets of best practices and standards, in order to achieve a proper level of security of a common type of application or service, as can be an e-commerce platform. This project can be an example of applying good security measures and basic infrastructure security to try to create more robust applications. Moreover, in this project will be used tools for testing the good application of the security measures, pentesting purposes and for possible vulnerability discovering, which will be documented as well.
publishDate 2022
dc.date.none.fl_str_mv 2022
2022-09-07
2022
2022-11-30
dc.type.none.fl_str_mv master thesis
http://purl.org/coar/resource_type/c_bdcc
NA
http://purl.org/coar/version/c_be7fb7dd8ff6fe43
dc.type.openaire.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
dc.identifier.none.fl_str_mv https://hdl.handle.net/2117/377463
url https://hdl.handle.net/2117/377463
dc.language.none.fl_str_mv Inglés
eng
language_invalid_str_mv Inglés
language eng
dc.rights.none.fl_str_mv open access
http://purl.org/coar/access_right/c_abf2
dc.rights.openaire.fl_str_mv info:eu-repo/semantics/openAccess
rights_invalid_str_mv open access
http://purl.org/coar/access_right/c_abf2
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Universitat Politècnica de Catalunya
publisher.none.fl_str_mv Universitat Politècnica de Catalunya
dc.source.none.fl_str_mv reponame:UPCommons. Portal del coneixement obert de la UPC
instname:Universitat Politècnica de Catalunya (UPC)
instname_str Universitat Politècnica de Catalunya (UPC)
reponame_str UPCommons. Portal del coneixement obert de la UPC
collection UPCommons. Portal del coneixement obert de la UPC
repository.name.fl_str_mv
repository.mail.fl_str_mv
_version_ 1869405633948680192
score 15,300724