api-guidelines icon indicating copy to clipboard operation
api-guidelines copied to clipboard
verified publisher icon bcgov

From NRM Information Security

Open mpilchar opened this issue 6 years ago • 1 comments

Looking through the OWASP REST security recommendations, I don’t think you missed anything

https://www.owasp.org/index.php/REST_Security_Cheat_Sheet https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/REST_Security_Cheat_Sheet.md,

Perhaps providing the above reference in the doc would be helpful though as a bit more detail and examples are available there. I realize we don’t want to overload the guidelines

mpilchar avatar Jul 02 '19 18:07 mpilchar

Thank you for your comment! A peer review was held on August 9th and we have the following feedback:

Good thinking - We will add a linked reference to OWASP REST as a bullet under “Security by Design”.

jeff-card avatar Aug 13 '19 18:08 jeff-card