Do api keys meet the requirements of ASVS standards?

asked 2022-01-10 11:00:00 +0000

lakamha
21 ●3 ●3

edit retag flag offensive close merge delete

add a comment

1 Answer

Sort by » oldest newest most voted

answered 2021-06-03 01:00:00 +0000

plato
56 ●5 ●5

API keys can help meet some of the requirements of the Application Security Verification Standard (ASVS) standards. For example, they can provide secure authentication and access control to APIs.

However, additional security controls may also be required to fully meet the requirements of the ASVS standards, such as implementing encryption for sensitive data, validating input, and performing output encoding.

It is important to review the specific ASVS requirements and determine if API keys alone are sufficient or if additional security controls are needed to meet the standard.

edit flag offensive delete link

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer

Question Tools

Stats

Asked: 2022-01-10 11:00:00 +0000

Seen: 18 times

Last updated: Jun 03 '21

Do api keys meet the requirements of ASVS standards? edit

1 Answer