API Security
Discover different aspects of API Security and learn best practice approaches.
Articles
API Security Best Practices
Security tips to consider when designing and creating APIs.
Token Sharing Approaches
A look on different token sharing approaches in the Service Mesh.
JWT Security Best Practices
What you should consider when using JWTs in your applications.
The Split Token Approach
A variation of the phantom token approach, which does need the introspection step.
Top 10 API Security Vulnerabilities According to OWASP
A write-up of the top API security vulnerabilities according to OWASP and mitigating approaches.
The Phantom Token Approach
Securing APIs and Microservices using tokens.
The API Security Maturity Model
There is a spectrum of API security implementations, and not all of them are effective.
Videos
Browser-less mobile login using the authentication API
Demos
Scalable API Security Using OAuth
Live presentations
Jacob Has a Horse, Says Travis – a Tale of Truths In a Microservice Architecture
Live presentations
Financial Grade APIs Using OAuth and OpenID Connect
Live presentations
Security Is a Concern, Let’s Make It an Enabler
Live presentations
Securing APIs in a Cloud Native Environment Using OAuth
Live presentations
Securing APIs and Microservices with OAuth and OpenID Connect
Live presentations
API security encompasses the practices, processes, and products used to ensure APIs are secure, data can be transferred safely, and malicious attacks are prevented. APIs power the connectivity of the digital world. They offer faster integrations and increased freedom of choice when it comes to products. Keeping APIs, and the data provided through them, safe and only available to the intended user is a must. In this section we have gathered information covering the most important aspects of securing APIs and microservices.