I am writing a mobile app that uses a read only REST service that sits behind our company firewall. The actual data supplied by the REST service is not private but I am concerned with a hacker using it to get behind the firewall. I have found lots of ideas on how to use JWTs to secure REST. Are these methods typically used to protect the data or protect the network the REST service is running on?
I want to know if the type of authentication used by the service I'm exposing impacts the security of services around it. Clearly it does not, based on the responses.