Slide 9
Slide 9 text
ⓒ 2023 Upstream Security Ltd. All Rights Reserved. Confidential.
APIs ARE A GROWING ATTACK SURFACE
APIs require relatively low technical expertise and introduce easier, yet fleet-wide, attack surfaces
MOBILITY
CLOUD
Stored data
Command
and control
Mobile
companion apps
Web apps
(e.g., dealership, workshops)
3rd parties
Connected vehicles
Charging stations
DATA APIs
Broken Object
Level
Authorization
Broken User
Authentication
Excessive
Data
Exposure
Lack of
Resources &
Rate Limiting
Security
Misconfiguration
Malicious
Injections
Improper Assets
Management
Insufficient
Logging &
Monitoring
APIs
APIs