×

Articles

The API Security Maturity Model

The API Security Maturity Model

There is a spectrum of API security implementations, and not all of them are effective.

JWT Security Best Practices

JWT Security Best Practices

What you should consider when using JWTs in your applications.

Top 10 API Security Vulnerabilities According to OWASP

Top 10 API Security Vulnerabilities According to OWASP

A write-up of the top API security vulnerabilities according to OWASP and mitigating approaches.

The Split Token Approach

The Split Token Approach

A variation of the phantom token approach, which does need the introspection step.

The Phantom Token Approach

The Phantom Token Approach

Securing APIs and Microservices using tokens.

Videos

Jacob Has a Horse, Says Travis – a Tale of Truths In a Microservice Architecture

Jacob Has a Horse, Says Travis – a Tale of Truths In a Microservice Architecture

Live presentations

Scalable API Security Using OAuth

Scalable API Security Using OAuth

Live presentations

Security Is a Concern, Let’s Make It an Enabler

Security Is a Concern, Let’s Make It an Enabler

Live presentations

Securing APIs in a Cloud Native Environment Using OAuth

Securing APIs in a Cloud Native Environment Using OAuth

Live presentations

Financial Grade APIs Using OAuth and OpenID Connect

Financial Grade APIs Using OAuth and OpenID Connect

Live presentations

Securing APIs and Microservices with OAuth and OpenID Connect

Securing APIs and Microservices with OAuth and OpenID Connect

Live presentations

API security encompasses the practices, processes, and products used to ensure APIs are secure, data can be transferred safely, and malicious attacks are prevented. APIs power the connectivity of the digital world. They offer faster integrations and increased freedom of choice when it comes to products. Keeping APIs, and the data provided through them, safe and only available to the intended user is a must. In this section we have gathered information covering the most important aspects of securing APIs and microservices.