GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck
This presentation was recorded at GOTO Amsterdam 2019. #GOTOcon #GOTOams
http://gotoams.nl
Philippe De Ryck - Founder of Pragmatic Web Security, Google Developer Expert
ABSTRACT
The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?
These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs [...]
Download slides and read the full abstract here:
https://gotoams.nl/2019/sessions/810/common-api-security-pitfalls
https://twitter.com/GOTOamst
https://www.linkedin.com/company/goto-
https://www.facebook.com/GOTOConference
#API #APIs #Security #SecurityPitfalls
Looking for a unique learning experience?
Attend the next GOTO Conference near you! Get your ticket at http://gotocon.com
SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.
https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Видео GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck канала GOTO Conferences
http://gotoams.nl
Philippe De Ryck - Founder of Pragmatic Web Security, Google Developer Expert
ABSTRACT
The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?
These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs [...]
Download slides and read the full abstract here:
https://gotoams.nl/2019/sessions/810/common-api-security-pitfalls
https://twitter.com/GOTOamst
https://www.linkedin.com/company/goto-
https://www.facebook.com/GOTOConference
#API #APIs #Security #SecurityPitfalls
Looking for a unique learning experience?
Attend the next GOTO Conference near you! Get your ticket at http://gotocon.com
SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.
https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Видео GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck канала GOTO Conferences
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
![GOTO 2018 • Introduction to OAuth 2.0 and OpenID Connect • Philippe De Ryck](https://i.ytimg.com/vi/GyCL8AJUhww/default.jpg)
![GOTO 2019 • Practical API Design • Ronnie Mitra](https://i.ytimg.com/vi/272ZZ53HS_4/default.jpg)
![GOTO 2019 • HTTP Headers for the Responsible Developer • Stefan Judis](https://i.ytimg.com/vi/JfjiFsJsO4E/default.jpg)
![GOTO 2019 • 3 Common Pitfalls in Microservice Integration & How to Avoid Them • Bernd Rücker](https://i.ytimg.com/vi/7uvK4WInq6k/default.jpg)
![Common API Security Pitfalls - Philippe De Ryck](https://i.ytimg.com/vi/dDZNDVO5EFQ/default.jpg)
![GOTO 2019 • Building Secure React Applications • Philippe De Ryck](https://i.ytimg.com/vi/O91hJJ5KMLs/default.jpg)
![GOTO 2017 • Debugging Under Fire: Keep your Head when Systems have Lost their Mind • Bryan Cantrill](https://i.ytimg.com/vi/30jNsCVLpAE/default.jpg)
![GOTO 2019 • Taking Security Seriously • Philippe De Ryck](https://i.ytimg.com/vi/wlxAXIXX0Yw/default.jpg)
![Getting Single Page Application Security Right by Philippe De Ryck](https://i.ytimg.com/vi/UFPGOvDrTOk/default.jpg)
![OWASP API Security Top 10 Webinar](https://i.ytimg.com/vi/zTkv_9ChVPY/default.jpg)
![GOTO 2015 • Agile is Dead • Pragmatic Dave Thomas](https://i.ytimg.com/vi/a-BOSpxYJ9M/default.jpg)
![GOTO 2018 • Event-Driven Microservices - not (just) about Events! • Allard Buijze](https://i.ytimg.com/vi/DzGuDNHsOQ0/default.jpg)
![GOTO 2019 • Building Resilient Frontend Architecture • Monica Lent](https://i.ytimg.com/vi/TqfbAXCCVwE/default.jpg)
![How to Build an Effective API Security Strategy](https://i.ytimg.com/vi/D7AfQKxFC0U/default.jpg)
![GOTO 2019 • Monolith Decomposition Patterns • Sam Newman](https://i.ytimg.com/vi/9I9GdSQ1bbM/default.jpg)
![GOTO 2017 • How to Take Great Engineers & Make Them Great Technical Leaders • Courtney Hemphill](https://i.ytimg.com/vi/RtMmxqkPVug/default.jpg)
![GOTO 2018 • The Do's and Don'ts of Error Handling • Joe Armstrong](https://i.ytimg.com/vi/TTM_b7EJg5E/default.jpg)
![GOTO 2019 • Event-Driven Microservices, the Sense, the Non-sense and a Way Forward • Allard Buijze](https://i.ytimg.com/vi/jrbWIS7BH70/default.jpg)
![The Parts of JWT Security Nobody Talks About | Philippe De Ryck, Google Developer Expert](https://i.ytimg.com/vi/DPrhem174Ws/default.jpg)
![GOTO 2018 • Confusion in the Land of the Serverless • Sam Newman](https://i.ytimg.com/vi/Y6B3Eqlj9Fw/default.jpg)