Web Services Security and Threats: A Systematic Literature Review

Privacy and data protection issues are the main problems in using web services to transmit data. Three aspects of information security that contains confidentiality, integrity, and availability need to be considered in maintaining web service security. Data sent by data providers can be easily attacked, resulting in data leaks when the data traffic process. Privacy data such as personal information and location data providers are sensitive data and need to be protected from unauthorized parties to avoid improper use of data. Also, data sent via the web service must be guaranteed that data is not changed by unauthorized persons in the data transmission process, because attacks that result in data changes can occur when the data has not yet arrived at the data recipient. The web service system must also ensure that data can always be available when needed. However, various attacks can be carried out to inhibit or stop the availability of this data. Therefore, we conducted a systematic literature review which aims to review and present some observation that has been done on existing research on web services security. Based on the results of our literature review, the secure coding method can be an available security solution. However, this method needs further development if it is applied to web services with the REST architecture which is currently being widely used.