Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Devhub Issue: BC Government API Guidelines [API creation with the focus on security by design] #31

Open
RPETHAN opened this issue Dec 16, 2022 · 0 comments
Open

Devhub Issue: BC Government API Guidelines [API creation with the focus on security by design] #31

RPETHAN opened this issue Dec 16, 2022 · 0 comments

Comments

@RPETHAN
Copy link

RPETHAN commented Dec 16, 2022

path: (do not delete) https://github.com/bcgov/api-guidelines/blob/master/government-of-british-columbia-api-guidelines.md
(do not delete) devhub page: undefined

Devhub Content Issue

API with security by design is briefly mentioned, OWASP security principles can be a good reference for that. https://github.com/OWASP/DevGuide/blob/master/02-Design/01-Principles%20of%20Security%20Engineering.md

the focus also should be on layered security design (with the security of data not just to be managed at the API level but across all levels), on how to minimize the impact of data exposure (with the least common and least privilege security principles ), when an API is compromised.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@RPETHAN