Which security actions must be implemented to prevent an API injection attack?
Which security actions must be implemented to prevent an API injection attack?
To prevent an API injection attack, it is essential to validate, filter, and sanitize all incoming data. These actions ensure that any input data received by the API is checked for malicious content before processing, thereby reducing the risk of code injection attacks. These measures help separate legitimate user inputs from potentially harmful code, effectively mitigating the chances of an injection attack.
"validate" https://www.computer.org/publications/tech-news/trends/api-injection-attacks-prevention
Options A, B, and D are related to general security best practices but are not specifically targeted at preventing API injection attacks.
yeah? API's use tokens, validate/filter/sanitize is generic firewall terminology....
input validation, filtering, and sanitization for data integrity. Use parameterized queries to separate code from user inputs, preventing injections.
C is correct