CloudVector provides a flexible security policy based on “Parameter Pinning,” which accurately identifies API calls that misuse this vulnerability and automatically protects against this threat by terminating the API session.
Discription

Broken Access Control

 

API access control is critical to protect sensitive data from unauthorized users. For example, an attacker can use stolen authentication tokens or brute force attacks to gain unauthorized access to applications. CloudVector continuously generates API catalogs that contain a comprehensive view of the parameters transacted in the request and response of each API. These APIs and parameters are categorized if they contain or transact sensitive data, such as personally identifiable information (PII)
https://t.co/ZN01ubDRAD

Back to Main