Preventing resubmission and replay attack using client nonce in REST API
I have a REST API backend which has HTTPS (and blocked HTTP) and use JWT as the authentication mechanism. Client side is iOS/Android App. I want to add a layer of safeguard on critical API by using client nonce to prevent (m… Continue reading Preventing resubmission and replay attack using client nonce in REST API