Exploring the Threat Landscape of API Attacks

Download 10
File Size 420.88 KB
File Count 1
Create Date 11/06/2025
Last Updated 11/06/2025

Download

Description

Exploring the Threat Landscape of API Attacks

1st Dheeraj Kamble 2nd Mrs. Suvarna Potdukhe 3rd Tanvi Deshmukh

Student

Dept. of Information Technology
Assistant Professor

RMD Sinhgad School of Engg.
Pune, India

4th Taniya Dingwani 5th Viraj Kamble

Student Student

Dept. of Information Technology Dept. of Information Technology

RMD Sinhgad School of Engg. RMD Sinhgad School of Engg.

Pune, India Pune, India

Abstract—The danger landscape around API security has grown dramatically as a result of the increasing use of APIs in contemporary software designs. Attackers are increasingly focussing on APIs because of their accessibility and exposure, especially those utilised in enterprise apps and crucial systems like Energy Storage Systems (ESS). By examining vulnerabilities, attack patterns, and security measures related to API implemen- tations, this article investigates the changing threat landscape of API attacks. We analyse the trade-offs between security and efficiency of various API communication types, such as GraphQL and RESTful APIs, emphasising how they affect attack vectors and data exposure. Furthermore, we look into how API usage patterns can be examined to find irregularities and possible security risks by utilising API embeddings like API2VEC. In addition, we address the difficulties in protecting APIs when formal specifications or source code are not available and provide behavioural analysis techniques to improve API security. Last but not least, we offer an organised method for learning about API security that is based on OWASP API Security Risks and incorporates gamification strategies to raise awareness and readiness for new API risks. Our results highlight how important it is to implement proactive API security measures at every stage of the software development lifecycle in order to reduce risks and guarantee a strong digital transformation.

Index Terms—API Security, API Attacks, OWASP API Se- curity Risks, API Vulnerabilities, Cybersecurity, API Threat Landscape, API Behavioral Analysis, API Security Awareness,

Previous

Inventory Management Techniques and Technologies that Can Effectively Reduce Defects Per Million Opportunities in Indian Ecommerce

Next

A Comparative Study of Analog and Microcontroller-Based RF Detection Systems for Mobile Phone Emission Monitoring

What is DOI

DOI:

A DOI will help Author(s) easily locate a document from your citation. Think of it like a Social Security number for the article you're citing — it will always refer to that article, and only that one. While a web address (URL) might change, the DOI will never change.

Where can i find DOI:

In IJSREM journal articles, the DOI will be printed with the article itself, usually on the footer of the page
If the DOI isn't included in the article, look it up on the website CrossRef.org (use the "Search Metadata" option) to check for an assigned DOI.

Benefits:

Allows for a quick and precise search.
Article can always be located.
Persistent link to its location on the Internet.
Easier identification of published articles even if the metadata URL is changed.
Aid in citation tracking, ensuring a researcher has accurate metrics on how and where their research outputs are being used or referenced.

Site Map

Terms and Conditions

Copyright Infragmentation

Publication Ethics

Editorial Board

Processing Fee's

Call for Papers

Publication Procedure

Research Topics

Frequently Asked Questions

What type of papers does International Journal of Scientific Research in Engineering and Management (IJSREM) publish?

Research Paper, Survey Paper, Informative Article, Case Studies, Review Papers, Comparative Studies

How long does it take for an accepted paper to be actually published?

Approximate will inform within 24 hours via email and sms.

What is the procedure to submit my paper?

Please Submit your Research Paper here Submit Research Paper Online - IJSREM

What is a Paper ID?

Paper ID is an Unique Identification Code provided to your submitted Manuscript. You should always mention the Paper ID during any communication with us.

How long my published paper will stay online?

Lifetime.

May I submit more than one article?

We will accept multiple submissions across multiple communities, as long as the author joins each community.

Why IJSREM?

IJSREM is one of the world's leading and fastest-growing research publications with the paramount objective of discovering advances by publishing insightful, double-blind, peer-reviewed scientific journals.

Publication Time Period

The Submitted Article/Paper will accept within 12-24 Hours, and it can publish within 24 Hours

Publication Procedure

Manuscript Submission - Check Manuscript Plagiarism - Send for Editorial Review - Final Decission to Author - Payment of Publication Fee - Re-screening - Final Publication

Processing Fee's

For Management, Hosting & Office Expenditure IJSREM Journal may charge some amount to publish the paper.

To Publish a Paper ₹: 800/- INR (without DOI)

₹:1000/- INR (with DOI)

To the extent possible under, Indospace Publications has waived all copyright and related or neighboring rights to Journal. This work is published from India.

Disclaimar Privacy Policy Terms and Conditions

Copyright © 2023. All Rights Reserved