5 Best Practices for Securing Your APIs
A talk given by Amjad Afanah from FX Labs at the 2019 Austin API Summit in Austin, Texas.
With the increased adoption of shift-left testing, more and more software engineering teams are moving application quality considerations closer to the developer (that is, to the “left” of the delivery chain) so that potential issues are avoided or resolved sooner, even before code is committed. Unfortunately, API security is often neglected by engineering teams, leaving their applications vulnerable to serious security risks. Unlike a quality bug where there is an upper limit, the actual cost of a security issue is unbounded.
In this session, you will learn about the most common API vulnerabilities including login attacks, RBAC, ABAC, distributed denial of service, injections, data attacks and others. You will also learn about the best practices to integrate security as part of API testing workflows and how to implement effective DevSecOps programs that start at the earliest points in the development process and follow the workload throughout its life cycle.
Видео 5 Best Practices for Securing Your APIs канала Nordic APIs
With the increased adoption of shift-left testing, more and more software engineering teams are moving application quality considerations closer to the developer (that is, to the “left” of the delivery chain) so that potential issues are avoided or resolved sooner, even before code is committed. Unfortunately, API security is often neglected by engineering teams, leaving their applications vulnerable to serious security risks. Unlike a quality bug where there is an upper limit, the actual cost of a security issue is unbounded.
In this session, you will learn about the most common API vulnerabilities including login attacks, RBAC, ABAC, distributed denial of service, injections, data attacks and others. You will also learn about the best practices to integrate security as part of API testing workflows and how to implement effective DevSecOps programs that start at the earliest points in the development process and follow the workload throughout its life cycle.
Видео 5 Best Practices for Securing Your APIs канала Nordic APIs
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
How to Build an Effective API Security Strategy
What is JWT authorization really about - Java Brains
APIs 101: How I Secure APIs / What Does it Mean to Secure an API? Part 9
OAuth 2.0 and OpenID Connect (in plain English)
7 Essential Knots You Need To Know
Microservices vs API | Differences Between Microservice and API | Edureka
Never RESTing – RESTful API Best Practices using ASP.NET Web API - Spencer Schneidenbach
Advanced JAX-RS 22 - REST API Authentication Mechanisms
OWASP API Security Top 10 Webinar
Explaining Open Banking and API Security
Presentation Skills: 7 Presentation Structures Used by the Best TED Talks
Best Practices for Building Enterprise Grade APIs with Amazon API Gateway - AWS Online Tech Talks
What is OAuth really all about - OAuth tutorial - Java Brains
Oktane17: Designing Beautiful REST + JSON APIs
The Nuts and Bolts of API Security: Protecting Your Data at All Times
Common API Security Pitfalls - Philippe De Ryck
A Tour of Different API Management Architectures
Common API Security Pitfalls • Philippe De Ryck • GOTO 2019
Designing the Right Security Architecture for your APIs (Cloud Next '19)
Securing Your APIs with OAuth 2.0 - API Days