Implementing use cases
As described in Chapter 2, Implementation Case Study, WBCV Telecom already has a fairly mature SOA implementation in place and is looking to externalize many of its SOAP/WSDL based business services as APIs. By externalizing these services, the Chief Technology Officer (CTO) hopes to unlock business functionality and data assets that were previously only available internally. These can potentially be leveraged by mobile developers, web developers, and business partners wishing to build and/or enhance solutions in order to offer a much richer and seamless user experience while also offering greater functionality.
Naturally, security is a top priority for the organization's CTO and the architecture team. The CTO is very aware that, by externalizing more business functionality and data through APIs, the organization is also exposing itself to a number of external threats such as the ones listed by the Open Web Application Security Project (OWASP).
Tip
Refer to:
OWASP top...
