Which two actions are recommended as security best practices to protect REST API? (Choose two.)
Which two actions are recommended as security best practices to protect REST API? (Choose two.)
To protect REST APIs, using SSL for encryption ensures that the data transmitted between the client and server is encrypted, thus protecting it from interception by unauthorized parties. Additionally, using a password hash helps in safeguarding credentials by storing them in a hashed format rather than plain text, making it difficult for attackers to retrieve the actual passwords even if they gain access to the storage.
B and C 2.2. Always Use HTTPS - a.k.a SSL 2.3. Use Password Hash https://restfulapi.net/security-essentials/
Agreed. And considering the overwhelming majority of API calls in automation are "machine to machine", how exactly would the 2FA even work...
B and C are correct
B and C are correct
Not sure what "Dual Authentication" means?
i think is two-factor authentication