5 Best Practices for Securing Your APIs
A talk given by Amjad Afanah from FX Labs at the 2019 Austin API Summit in Austin, Texas.
With the increased adoption of shift-left testing, more and more software engineering teams are moving application quality considerations closer to the developer (that is, to the “left” of the delivery chain) so that potential issues are avoided or resolved sooner, even before code is committed. Unfortunately, API security is often neglected by engineering teams, leaving their applications vulnerable to serious security risks. Unlike a quality bug where there is an upper limit, the actual cost of a security issue is unbounded.
In this session, you will learn about the most common API vulnerabilities including login attacks, RBAC, ABAC, distributed denial of service, injections, data attacks and others. You will also learn about the best practices to integrate security as part of API testing workflows and how to implement effective DevSecOps programs that start at the earliest points in the development process and follow the workload throughout its life cycle.
Видео 5 Best Practices for Securing Your APIs канала Nordic APIs
With the increased adoption of shift-left testing, more and more software engineering teams are moving application quality considerations closer to the developer (that is, to the “left” of the delivery chain) so that potential issues are avoided or resolved sooner, even before code is committed. Unfortunately, API security is often neglected by engineering teams, leaving their applications vulnerable to serious security risks. Unlike a quality bug where there is an upper limit, the actual cost of a security issue is unbounded.
In this session, you will learn about the most common API vulnerabilities including login attacks, RBAC, ABAC, distributed denial of service, injections, data attacks and others. You will also learn about the best practices to integrate security as part of API testing workflows and how to implement effective DevSecOps programs that start at the earliest points in the development process and follow the workload throughout its life cycle.
Видео 5 Best Practices for Securing Your APIs канала Nordic APIs
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
How to Build an Effective API Security StrategyWhat is JWT authorization really about - Java BrainsAPIs 101: How I Secure APIs / What Does it Mean to Secure an API? Part 9OAuth 2.0 and OpenID Connect (in plain English)7 Essential Knots You Need To KnowMicroservices vs API | Differences Between Microservice and API | EdurekaNever RESTing – RESTful API Best Practices using ASP.NET Web API - Spencer SchneidenbachAdvanced JAX-RS 22 - REST API Authentication MechanismsOWASP API Security Top 10 WebinarExplaining Open Banking and API SecurityPresentation Skills: 7 Presentation Structures Used by the Best TED TalksBest Practices for Building Enterprise Grade APIs with Amazon API Gateway - AWS Online Tech TalksWhat is OAuth really all about - OAuth tutorial - Java BrainsOktane17: Designing Beautiful REST + JSON APIsThe Nuts and Bolts of API Security: Protecting Your Data at All TimesCommon API Security Pitfalls - Philippe De RyckA Tour of Different API Management ArchitecturesCommon API Security Pitfalls • Philippe De Ryck • GOTO 2019Designing the Right Security Architecture for your APIs (Cloud Next '19)Securing Your APIs with OAuth 2.0 - API Days