The lack of a clear protocol makes application security assessments
of microservice APIs somewhat precarious, since the typical go-to web security assessment tools, prescribed security assessment methodologies, and general penetration tester experience may
not include coverage or interaction know-how for a particular microservice API offering or operational behavior.
In this whitepaper, industry thought leader Jeff Forristal talks about the challenges and practices for doing security testing on APIs.
*To download this Industry Whitepaper please fill out the form below.