Archive / INF Seminars / INF_2023_12_07_Diana_Carolina_Munoz_Hurtado
USI - Email
 
 
Università
della
Svizzera
italiana
INF
 
 
 
  
 main_banner
 

Exploring Security Practices in OpenAPIs

 
 
 

Chair: Tahereh Zohdinasab

 

Thursday

07.12

USI Campus Est, room D1.15, Sector D
16:30 - 17:30
  
 

Diana Carolina Muñoz Hurtado
Università della Svizzera Italiana
Abstract:
Security is an integral requirement of any software development project, particularly critical for application programming interfaces (APIs). In this presentation I will introduce how different API security schemes are described using OpenAPI, an emerging interface description language for Web APIs. We will then observe how developers adopt basic API security practices and patterns (such as API keys) by analysing a large database of OpenAPI artefacts. We will not only discuss the most common security schemes that developers have adopted, but also track which API become more (or less) secure over time.

Biography:
I am a Ph.D student in the DESIGN (Architecture, Design and Web Information Systems Engineering) research group at the software institute USI, Lugano, supervised by Prof. Dr Cessare Pautasso. In 2022 I receive my Master’s degree in Software Engineering from the Pontificia Universidad Javeriana from Colombia. I worked for 4 years as a Technical Consultant in ACI Worldwide a company that developed software for electronic payments. My currently research focuses on study security practices and patterns for application programming interfaces (APIs).
 
Università
della
Svizzera
italiana
Quicklinks:
INF Website
INF Newsletter Archive
Campus Lugano
 Follow us:Unsubscribe here
Reports decanato.inf@usi.ch