GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck
This presentation was recorded at GOTO Amsterdam 2019. #GOTOcon #GOTOams
http://gotoams.nl
Philippe De Ryck - Founder of Pragmatic Web Security, Google Developer Expert
ABSTRACT
The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?
These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs [...]
Download slides and read the full abstract here:
https://gotoams.nl/2019/sessions/810/common-api-security-pitfalls
https://twitter.com/GOTOamst
https://www.linkedin.com/company/goto-
https://www.facebook.com/GOTOConference
#API #APIs #Security #SecurityPitfalls
Looking for a unique learning experience?
Attend the next GOTO Conference near you! Get your ticket at http://gotocon.com
SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.
https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Видео GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck канала GOTO Conferences
http://gotoams.nl
Philippe De Ryck - Founder of Pragmatic Web Security, Google Developer Expert
ABSTRACT
The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?
These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs [...]
Download slides and read the full abstract here:
https://gotoams.nl/2019/sessions/810/common-api-security-pitfalls
https://twitter.com/GOTOamst
https://www.linkedin.com/company/goto-
https://www.facebook.com/GOTOConference
#API #APIs #Security #SecurityPitfalls
Looking for a unique learning experience?
Attend the next GOTO Conference near you! Get your ticket at http://gotocon.com
SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.
https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Видео GOTO 2019 • Common API Security Pitfalls • Philippe De Ryck канала GOTO Conferences
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
GOTO 2018 • Introduction to OAuth 2.0 and OpenID Connect • Philippe De Ryck
GOTO 2019 • Practical API Design • Ronnie Mitra
GOTO 2019 • HTTP Headers for the Responsible Developer • Stefan Judis
GOTO 2019 • 3 Common Pitfalls in Microservice Integration & How to Avoid Them • Bernd Rücker
Common API Security Pitfalls - Philippe De Ryck
GOTO 2019 • Building Secure React Applications • Philippe De Ryck
GOTO 2017 • Debugging Under Fire: Keep your Head when Systems have Lost their Mind • Bryan Cantrill
GOTO 2019 • Taking Security Seriously • Philippe De Ryck
Getting Single Page Application Security Right by Philippe De Ryck
OWASP API Security Top 10 Webinar
GOTO 2015 • Agile is Dead • Pragmatic Dave Thomas
GOTO 2018 • Event-Driven Microservices - not (just) about Events! • Allard Buijze
GOTO 2019 • Building Resilient Frontend Architecture • Monica Lent
How to Build an Effective API Security Strategy
GOTO 2019 • Monolith Decomposition Patterns • Sam Newman
GOTO 2017 • How to Take Great Engineers & Make Them Great Technical Leaders • Courtney Hemphill
GOTO 2018 • The Do's and Don'ts of Error Handling • Joe Armstrong
GOTO 2019 • Event-Driven Microservices, the Sense, the Non-sense and a Way Forward • Allard Buijze
The Parts of JWT Security Nobody Talks About | Philippe De Ryck, Google Developer Expert
GOTO 2018 • Confusion in the Land of the Serverless • Sam Newman