How the application is secured

Methods

Rate Limiting

Implemented rate-limiting on PUT, POST and DELETE Web API endpoints

Definitions

• Rate limiting: is designed to mitigate DOS and brute-force attacks by creating a limit of x number of requests in y seconds to the same endpoint originating from a single IP address.
• Denial of Service (DOS) attacks: are malicious attempts to make a server, network, or application unavailable to users by overwhelming it with11 fraudulent traffic or resource requests.
• Brute force attacks: are cryptographic hacking methods that use trial-and-error to systematically guess all possible combinations of passwords, PINs, or encryption keys until the correct one is found.