Common API Security Pitfalls
GOTO Amsterdam 2019

Wednesday Jun 19
16:30 –
17:15
Graanbeurszaal

Common API Security Pitfalls

Slides:


This video is also available in the GOTO Play video app! Download it to enjoy offline access to our conference videos while on the move.

Available in Google Play Store or Available in Apple App Store




The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?

These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs, and the best practices to improve them towards the future.

What will the audience learn from this talk?
An overview of security pitfalls in APIs, how to detect them, and how to avoid them.

Does it feature code examples and/or live coding?
No. The slides do have examples, but no in-depth code examples.

Prerequisite attendee experience level:
Level 300