NIST finalizes guidance for application programming interfaces with details on vulnerabilities, security controls

The National Institute of Standards and Technology is providing guidance on securing application programming interfaces in a finalized publication, with details on vulnerabilities and controls to help address them.

“Modern enterprise IT systems rely on a family of application programming interfaces (APIs) for integration to support organizational business processes. Hence, a secure deployment of APIs is critical for overall enterprise security. This, in turn, requires the identification of risk factors or vulnerabilities in various phases of the API life cycle...