API Security for the Modern Enterprise

In recent years, APIs have grown to be essential to the digital strategy of a modern organization. To ensure that digital assets are securely distributed and privacy is maintained at all times, proper access management needs to be in place. Keeping APIs and the data provided safe and only available to the intended user is a must.

With end-users accustomed to moving through digital systems friction-free, supplying them with an efficient identification and authorization process has never been more important. By embedding identity information in tokens, you can simplify the access control decisions made in many different places throughout your architecture.

This booklet gathers a selection of articles that cover the most critical aspects of securing APIs and microservices. It introduces related topics, such as standards, like OAuth 2, OpenID Connect, and SCIM, and how to connect these to your applications, systems, and user identities.