Rim El Malki

API Specifications Conference 2022: OpenAPI Extended Security Scheme

Rim El Malki September 14, 2022 0 Comments

Introduction The Open Web Application Security Project (OWASP) has identified Broken Object Level Authorization (BOLA), also known as Insecure Direct Object References (IDOR), as the most common and severe security vulnerability in today’s APIs. BOLA occurs when an authenticated user…
Read more

Cisco, Research

GraphQL: Security Vulnerabilities and Approaches

Rim El Malki March 24, 2021 0 Comments

Introduction GraphQL was developed and open-sourced by Facebook to facilitate the data-fetching process. It is an API query language that can be used as an alternative to REST. GraphQL is gaining popularity for implementing and consuming APIs due to the…
Read more

Uncategorized

API, attacks, GraphQL, security

Author Archive: Rim El Malki

API Specifications Conference 2022: OpenAPI Extended Security Scheme

GraphQL: Security Vulnerabilities and Approaches