Development of an API to request security advisories for CSAF 2.0
- This work addresses the conceptualization, design, and implementation of an Application Programming Interface (API) for the Common Security Advisory Framework (CSAF) 2.0, introducing another method for distributing CSAF documents in addition to two already existing methods. These don't allow the use of flexible queries as well as filtering, which makes it difficult for operators of software andThis work addresses the conceptualization, design, and implementation of an Application Programming Interface (API) for the Common Security Advisory Framework (CSAF) 2.0, introducing another method for distributing CSAF documents in addition to two already existing methods. These don't allow the use of flexible queries as well as filtering, which makes it difficult for operators of software and hardware to use CSAF. An API is intended to simplify this process and thus advance the automation goal of CSAF. First, it is evaluated whether the current standard allows the implementation of an API. Any conflicts are highlighted and suggestions for standard adaptations are made. Based on these results, the API is designed to meet the previously defined requirements. Subsequently, a proof of concept is successfully developed according to the design and extensively tested with specially prepared test data. Finally, the results and the necessary standard adjustments are summarized and justified. The conceptual design and the implementation were successfully completed. However, during the implementation of the proof of concept, some routes could not be fully implemented.…
Document Type: | Bachelor Thesis |
---|---|
Zitierlink: | https://opus.hs-offenburg.de/6011 | Bibliografische Angaben |
Title (English): | Development of an API to request security advisories for CSAF 2.0 |
Author: | Leon Schmidt |
Advisor: | Daniel Hammer, Klaus Biß, Thomas Schmidt |
Year of Publication: | 2022 |
Granting Institution: | Hochschule Offenburg |
Page Number: | X, 101 |
URN: | https://urn:nbn:de:bsz:ofb1-opus4-60113 |
Language: | English | Inhaltliche Informationen |
Institutes: | Fakultät Medien (M) (ab 22.04.2021) |
Institutes: | Abschlussarbeiten / Bachelor-Studiengänge / UNITS |
DDC classes: | 000 Allgemeines, Informatik, Informationswissenschaft / 000 Allgemeines, Wissenschaft / 004 Informatik |
GND Keyword: | API; Computersicherheit; Go <Programmiersprache>; HTTP |
Tag: | CSAF; Golang; IT-Security; Proof of Concept; REST-API; Security Advisories | Formale Angaben |
Open Access: | Open Access |
Diamond | |
Licence (German): | Urheberrechtlich geschützt |
SWB-ID: | 1835003133 |