People may consider API and Web application security the same, but are often surprised to find that API security involves many additional, some much more complex issues, that must be addressed. During this presentation I will cover some of the more common issues such as authentication and authorization, privacy, as well as payload and other API related attacks and security vulnerabilities.
Rob Richards is Chief Architect at Mashery, the leading provider of on-demand API management solutions. Rob has numerous years experience working with and architecting a wide variety of APIs on a number of different platforms. He also maintains a number of the XML based extensions for PHP, contributes to the libxml2 and libxslt projects and is the author of both the xmlseclibs, a library providing XML Signatures and Encryption for PHP, as well as the wse-php library to provide WS-* support for the native PHP SOAP extension.
Sign in to add slides, notes or videos to this session