Architecting Secure REST APIs with Authentication and Authorization Approaches for Web Services

Authors

  • Rajesh Kotha Software Development Engineering Advisor at Fiserv, USA. Author

DOI:

https://doi.org/10.47363/JMCA/2023(2)E132

Keywords:

REST APIs, Authentication, Authorization, HMAC (Hash-Based Message Authentication Code), Security Protocols, API Security, Slim Framework, Message Authentication Codes (MACs), OWASP, Cryptographic Hash Functions, Secure Communication

Abstract

A collection of best practices and instructions for handling API inquiries are introduced in the REST standard for software architecture. It eliminates the need for complicated documentation by streamlining the request and answer process in a novel and straightforward manner without using HTTP and URI addresses instead of extra encapsulation, like in “Simple Object Protocol.” The article expounds on the HMAC technique, which permits authentication and ensures the secrecy, integrity, and non-repudiation of REST services. Slim Framework was used to create certain examples. “The HMAC Algorithm is presented in Figure 1”. The technique should be used to secure REST APIs since it is an easy-to-use and more secure web-service protection system.

Author Biography

  • Rajesh Kotha, Software Development Engineering Advisor at Fiserv, USA.

    Rajesh Kotha, Software Development Engineering Advisor at Fiserv, USA. 

Downloads

Published

2023-06-10

Issue

Vol. 2 No. 2 (2023): Volume 2 Issue 2

Section

Articles