25. Dresdner OWASP Stammtisch

Ben @ OWASP
Datum
Freitag, 2. November 2018 um 19:30 Uhr bis 22:00 Uhr
Ort
HQ im Zentralwerk

Philippe De Ryck wird einen Vortrag über Common API security pitfalls halten. Der Vortrag wird in Englisch sein.

Abstract

The shift towards an API landscape indicates a significant evolution in the way we build applications. The rise of JavaScript and mobile applications have sparked an explosion of easily-accessible REST APIs. But how do you protect access to your API? Which security aspects are no longer relevant? Which security features are an absolutely must-have, and which additional security measures do you need to take into account?

These are hard questions, as evidenced by the deployment of numerous insecure APIs. Attend this session to find out about common API security pitfalls, that often result in compromised user accounts and unauthorized access to your data. We expose the problem that lies at the root of each of these pitfalls, and offer actionable advice to address these security problems. After this session, you will know how to assess the security of your APIs, and the best practices to improve them towards the future.

About Philippe

Philippe De Ryck is the founder of Pragmatic Web Security, where he travels the world to train developers on web security and security engineering. He holds a Ph.D. in web security from KU Leuven. Google recognizes Philippe as a Google Developer Expert for his knowledge of web security and security in Angular applications.

Mehr Infos gibt zur Dresdner OWASP Initiative gibt es im OWASP Wiki.