Developing Applications and Automating Workflows Using Cisco Platforms (DEVASC) — Question 396
A developer has experienced security issues with a previously developed application. The API offered by that application is open and without any constraints. During a recent attack, the application was overloaded with API requests. To address this issue, an API constraint is implemented to protect the application from future attacks or any sudden throttling. Which API constraint must the application developer implement in this situation?
Answer options
- A. pagination
- B. rate limiting
- C. filtering
- D. payload limiting
Correct answer: B
Explanation
Rate limiting is the correct choice because it restricts the number of API requests a user can make in a given time frame, thus preventing overload during attacks. Pagination, filtering, and payload limiting do not directly control the volume of requests, making them ineffective in this particular context of protecting against API floods.