Tag: web-service
Found 127 results for 'web-service'.
1) authentication - Token based API security over repeated username/password requests
2) authentication - Custom web authentication scheme
3) hash - Web Service Authentication Using PBKDF2 and a Public Salt - Does the salt need to change on every request?
4) mobile - Does a malicious android WebView break the DoubleSubmittCookie countermeasure against CSRF?
5) csrf - Why is CSRF protection only applicable to web services with browser clients?
6) appsec - Web Service Security
7) web-application - What is untrusted data
8) authentication - How to securely provide data to a web server using a data warehouse?
9) web-service - Protect server-side key with client token
10) appsec - What to do when you can’t protect mobile app secret keys?
11) web-service - Does certificate pinning protect against Fiddler?
12) web-service - Where should a Vulnerability Disclosure Policy be published?
13) web-service - CORS configuration for service with single browser client
14) authentication - Are third party authentification provider included via iframe by default considered (in)secure?
15) sql-server - System.Web in SQL Server CLR Function
16) authentication - Is this token based web service secure?
17) encryption - POST over HTTPS "secure enough" for sensitive data?
18) encryption - Letting client encrypt his/her data. How to ensure the client doesn't lose his/her private data?
19) web-service - Choosing security scenario for WCF service/client hosted by IIS
20) denial-of-service - Denial Of Service attack in asynchronous communication
21) web-application - How can I find a web application's document root using a path traversal vulnerability?
22) web-service - REST security standards
23) appsec - Ensuring a web-service only processes requests from specific computers
24) web-application - How to secure a web service for web applications using same database?
25) java - Securing Java web services called by web site in DMZ using web services for communication
26) tls - Login to social Media using Facebook Connect
27) postgresql - Is it good idea to invoke Web Service from the database function or trigger?
28) tls - Checking SSL/TLS servers for NULL encryption support
29) sql-server - Audit use of CLR Table-valued function
30) web-application - Is it reasonable to use a security proxy when integrating two web applications?
31) openssl - decrypt a soap message using openssl
32) web-service - IP Address and Site Verification
33) mobile - Is a users mobile number available to a web service?
34) audit - Basis for "trusting" third party code and services
35) linux - Is writing to /dev/null secure?
36) tls - Public Key Certificate Pinning and MITM attack
37) privacy - How secure are the passwords stored at Google Passwords?
38) authentication - Can OAuth2 help to authenticate the app?
39) encryption - Does anyone use XML Encryption?
40) http - OWASP Secure Headers for Web Services
41) authentication - Securing communication
42) authentication - WSS (WSS4J): cleartext password in UsernameToken vs salted password hash in database
43) web-application - How to generate random but unique tokens for authentication?
44) tls - Paypal IPN, SSL and man-in-the-middle attacks
45) appsec - CSRF prevention for RESTful services
46) oracle - Oracle 11gR2 - Dynamic Registration
47) web-application - What abuses can an infected webpage do to me if I'm using Chrome and Flash is disabled
48) csrf - Is CSRF prevention logic required for api that is consumed only by mobile app?
49) appsec - Facebook page receiving improbable amount of likes from unknown users
50) appsec - XSS prevention for RESTful services