Service Virtualization and API Testing

Cynthia Dunlop

Subscribe to Cynthia Dunlop: eMailAlertsEmail Alerts
Get Cynthia Dunlop: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Related Topics: Cloud Computing, Security Journal, SOA & WOA Magazine, Cloud Expo on Ulitzer

Cloud Computing: Article

Exposing Your APIs = Opening Your Home to Bears?

As organizations expose their business-critical services as APIs, test and QA teams need to ensure the organization is protected

Exposing an API to your application is as risky as installing a doggie door into your house: you expect your dog to have the convenience of outdoor access, but the reality is that you cut a hole in your house.

The intended use is to give the anticipated “users” access to an area that is otherwise private. However, once you open that portal into your sanctuary, there’s no telling who else might take advantage of it. Just as the doggie door can open your home to all sorts of wildlife, so can API exposure open the door to application usage you never anticipated (both innocent misuse and malicious attacks).

A recent incident in Parasoft's home town of Monrovia, CA provides a real-life example of how a doggie door can lead to some rather unexpected consequences...

bearmonrovia

A Monrovia resident recently came home to find that 2 bears entered his home through a doggie door, ransacked his kitchen, and ate everything in site. For the full story, including some video, see Bears Break Through Pet Door, Ransack Monrovia Kitchen.

API Testing Challenges and Best Practices

API Testing best practices

As organizations expose their business-critical services as APIs, test and QA teams need to ensure the organization is protected against the threats and dangers that such exposure could bring.

Read Parasoft's new white paper on API Testing Challenges and Best Practices to learn about the top 4 API testing challenges and 5 API testing must-haves for addressing these challenges.

More Stories By Cynthia Dunlop

Cynthia Dunlop, Lead Content Strategist/Writer at Tricentis, writes about software testing and the SDLC—specializing in continuous testing, functional/API testing, DevOps, Agile, and service virtualization. She has written articles for publications including SD Times, Stickyminds, InfoQ, ComputerWorld, IEEE Computer, and Dr. Dobb's Journal. She also co-authored and ghostwritten several books on software development and testing for Wiley and Wiley-IEEE Press. Dunlop holds a BA from UCLA and an MA from Washington State University.