NCI WEBSITE
NORMA eResearch @NCI Library

FAST: Fortifying API Security Testing A framework for automated API security testing

Tools

Kasturi, Aniket Bhalchandra (2024) FAST: Fortifying API Security Testing A framework for automated API security testing. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (2MB) | Preview
[thumbnail of Configuration Manual]
Preview
 PDF (Configuration Manual)
Download (1MB) | Preview

Abstract

The rise in demand for incorporating API (Application Programming Interface) in various software and systems has increased the use of enhanced security. API-integrated systems and software provide a wide range of facilities to the users but have a wide range of security gaps which are the potential paths for the attackers to gain malicious access. Manual form of testing offers a wide range of benefits and has the potential to detect weaknesses but has sets of drawbacks. Manual forms of testing practices sometimes are not efficient enough in modern applications and software which is continuously upgraded based on the needs and demands of the customers and also is time consuming on repetitive test cases. API Security testing tool is majorly used by different developers to develop and initiate testing of different APIs. The tool offers an advanced user-friendly platform which allows the developers to configure APIs and initiate testing phases for the APIs. On the other hand, different testing tools also have features that are used by the developers to achieve better security. Different security testing tool is generally used by the testers to develop different security test cases that can be further initiated. This helps the penetration testers to detect different sets of security flaws and vulnerabilities which are present within the system. This dissertation will mainly involve describing the wide range of roles and features of automation API security testing in the conduction of different ranges of security testing activities. It will majorly focus on the process of development of different test cases and delivering effective security activities. Moreover, the limitations of these are also discussed and further recommendations are also provided which can be used to enhance the security mechanism of the APIs.. Automated forms of security testing offer various sets of facilities which help in lowering the vulnerabilities and problems of manual testing. Automated forms of testing are associated with more scalable and enhanced security mechanisms. These sets of automated API security testing are incorporated with various sets of test cases which allows the security professionals to deal with the process of penetration testing. It also allows the manual testers to focus on more sensitive areas rather than dealing with sets of repetitive tasks.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Verma, Rohit
UNSPECIFIED
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software
T Technology > T Technology (General) > Information Technology > Computer software
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Ciara O'Brien
Date Deposited: 23 Jul 2025 14:18
Last Modified: 23 Jul 2025 14:18
URI: https://norma.ncirl.ie/id/eprint/8219

Actions (login required)

View Item View Item