Information security methods to protect rest web services communication and data in http requests using json web token and keycloak red hat single sign on
Abstract:
Currently the protocols and open standards that are used to exchange data between applications or systems are web services. REST is the most used Internet services API due to the logic and ease of exchanging data, however, this technology is using the non-secure HTTP protocol as a means of communication compromises the information it manages. This article identifies mitigation alternatives to the vulnerabilities that arise when using REST web services over the HTTP protocol, through a combination of JSON Web Token and Keycloak Red Hat Single Sign On technologies, information security methods are formulated to protect REST web services communication and data in HTTP requests. The results obtained when testing with the proposed solution are presented and the findings generated are compared with similar articles.
Año de publicación:
2020
Keywords:
- Security-domain
- Jwt
- Auth
- Openid-connect
- Postman
Fuente:
scopusTipo de documento:
Article
Estado:
Acceso restringido
Áreas de conocimiento:
- Red informática
- Ciencias de la computación
Áreas temáticas:
- Programación informática, programas, datos, seguridad
