{"id":"https://openalex.org/W4205650511","doi":"https://doi.org/10.1007/978-981-16-9229-1_11","title":"Research Towards Key Issues of API Security","display_name":"Research Towards Key Issues of API Security","publication_year":2022,"publication_date":"2022-01-01","ids":{"openalex":"https://openalex.org/W4205650511","doi":"https://doi.org/10.1007/978-981-16-9229-1_11"},"language":"en","primary_location":{"id":"doi:10.1007/978-981-16-9229-1_11","is_oa":true,"landing_page_url":"https://doi.org/10.1007/978-981-16-9229-1_11","pdf_url":"https://link.springer.com/content/pdf/10.1007/978-981-16-9229-1_11.pdf","source":{"id":"https://openalex.org/S2764900261","display_name":"Communications in computer and information science","issn_l":"1865-0929","issn":["1865-0929","1865-0937"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Communications in Computer and Information Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/978-981-16-9229-1_11.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5114200740","display_name":"Ronghua Sun","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Ronghua Sun","raw_affiliation_strings":["Data Star Observatory Technology Co., Ltd., Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Data Star Observatory Technology Co., Ltd., Beijing, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021394222","display_name":"Qianxun Wang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Qianxun Wang","raw_affiliation_strings":["Data Star Observatory Technology Co., Ltd., Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Data Star Observatory Technology Co., Ltd., Beijing, China","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5061424834","display_name":"Liang Guo","orcid":"https://orcid.org/0000-0002-9412-3954"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Liang Guo","raw_affiliation_strings":["Data Star Observatory Technology Co., Ltd., Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Data Star Observatory Technology Co., Ltd., Beijing, China","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5114200740"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":4.8302,"has_fulltext":true,"cited_by_count":15,"citation_normalized_percentile":{"value":0.96508598,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"179","last_page":"192"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9955999851226807,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7229197025299072},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6231002807617188},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5492451786994934},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.5208916664123535},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.49603089690208435},{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.47891342639923096},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.42564091086387634},{"id":"https://openalex.org/keywords/application-programming-interface","display_name":"Application programming interface","score":0.4150301218032837},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.32070308923721313},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.14605039358139038}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7229197025299072},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6231002807617188},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5492451786994934},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.5208916664123535},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.49603089690208435},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.47891342639923096},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.42564091086387634},{"id":"https://openalex.org/C99613125","wikidata":"https://www.wikidata.org/wiki/Q165194","display_name":"Application programming interface","level":2,"score":0.4150301218032837},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.32070308923721313},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.14605039358139038},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/978-981-16-9229-1_11","is_oa":true,"landing_page_url":"https://doi.org/10.1007/978-981-16-9229-1_11","pdf_url":"https://link.springer.com/content/pdf/10.1007/978-981-16-9229-1_11.pdf","source":{"id":"https://openalex.org/S2764900261","display_name":"Communications in computer and information science","issn_l":"1865-0929","issn":["1865-0929","1865-0937"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Communications in Computer and Information Science","raw_type":"book-chapter"}],"best_oa_location":{"id":"doi:10.1007/978-981-16-9229-1_11","is_oa":true,"landing_page_url":"https://doi.org/10.1007/978-981-16-9229-1_11","pdf_url":"https://link.springer.com/content/pdf/10.1007/978-981-16-9229-1_11.pdf","source":{"id":"https://openalex.org/S2764900261","display_name":"Communications in computer and information science","issn_l":"1865-0929","issn":["1865-0929","1865-0937"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Communications in Computer and Information Science","raw_type":"book-chapter"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4205650511.pdf","grobid_xml":"https://content.openalex.org/works/W4205650511.grobid-xml"},"referenced_works_count":9,"referenced_works":["https://openalex.org/W2020602335","https://openalex.org/W2470989862","https://openalex.org/W2553003374","https://openalex.org/W2794648377","https://openalex.org/W2955270935","https://openalex.org/W2995082278","https://openalex.org/W3015797940","https://openalex.org/W3083177412","https://openalex.org/W3165794346"],"related_works":["https://openalex.org/W1883246888","https://openalex.org/W2370114625","https://openalex.org/W2947584067","https://openalex.org/W3118510577","https://openalex.org/W2280562859","https://openalex.org/W3157230915","https://openalex.org/W1496728123","https://openalex.org/W2062873522","https://openalex.org/W1756374135","https://openalex.org/W2789975780"],"abstract_inverted_index":{"Abstract":[0],"With":[1],"the":[2,11,38,72,84,93,103,128,131],"mass":[3],"application":[4],"of":[5,30,49,74,86,96,105,178],"virtualization,":[6],"micro-services,":[7],"and":[8,65,79,142,176,183,191],"cloud-native":[9],"technologies,":[10],"interaction":[12],"between":[13],"service":[14],"entities":[15],"through":[16],"APIs":[17,32,43],"has":[18],"become":[19,156],"a":[20,27,116,160],"norm.":[21],"Many":[22],"platforms":[23],"are":[24,44],"still":[25],"maintaining":[26],"large":[28],"number":[29],"old":[31,61],"due":[33],"to":[34,166],"business":[35],"needs.":[36],"At":[37],"same":[39],"time,":[40,130],"many":[41],"new":[42,112],"gradually":[45],"going":[46],"online.":[47],"Both":[48],"these":[50],"statuses":[51],"put":[52],"forward":[53],"higher":[54],"requirements":[55],"for":[56,185],"API":[57,87,100,113,154,162,169,179,186],"security.":[58],"Focusing":[59],"on":[60,121,137],"APIs\u2019":[62],"security":[63,80,117,163,180,187],"protection":[64],"other":[66],"issues,":[67],"this":[68,90],"article":[69,91],"starts":[70],"from":[71],"process":[73],"asset":[75,88],"discovery,":[76,89],"vulnerability":[77,114],"detection,":[78,115],"auditing.":[81],"Aiming":[82,110],"at":[83,111],"problem":[85],"summarizes":[92],"technical":[94,174],"methods":[95],"automatically":[97],"clustering":[98],"unowned":[99],"assets":[101],"using":[102],"characteristics":[104],"various":[106],"commonly":[107],"used":[108],"APIs.":[109],"analysis":[118,140],"method":[119],"based":[120,136],"finite":[122],"state":[123],"machine":[124],"is":[125,146],"proposed.":[126],"For":[127],"first":[129],"cross-network":[132],"communication":[133,155],"taint":[134,139],"propagation":[135],"dynamic":[138],"technology":[141,145],"system-level":[143],"simulation":[144],"realized,":[147],"enabling":[148],"sensitive":[149],"data":[150],"flow":[151],"tracing":[152],"in":[153,181],"feasible.":[157],"We":[158,172],"designed":[159],"flowbased":[161],"audit":[164],"system":[165],"improve":[167],"automated":[168],"protection.":[170],"Finally,":[171],"analyzed":[173],"opportunities":[175],"challenges":[177],"detail":[182],"prospected":[184],"research\u2019s":[188],"next":[189],"direction":[190],"development":[192],"trend.":[193]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}