More Security Best Practices for Backend Developers
As a back end developer, we have a big job. We make apps that manage people’s data and we can make code that does many things to them whether they’re good or not.
In this article, we’ll look at some security best practices to take note of when we’re developing back end apps.
Suspicious Action Throttling or Blocking
We should have a way to detect suspicious activities and throttle or block them to prevent various kinds of attacks.
We can use content delivery networks like Cloudflare to detect suspicious traffic and block them at their source.
Also, we shouldn’t let people do things that’ll overload our systems by slowing down downloads and doing other things that won’t let them do too many operations at once.
The number of requests that can be made should also be throttled so that clients can’t make too many requests at a time and overwhelm our systems.
If the activities that are overloading our systems are persistent, then blocking the source that commits those actions are required.
For instance, we can’t let users make 100 requests a second to get customer information.
