Advanced API Security

OAuth 2.0 and Beyond

Authors: Siriwardena, Prabath

Free Preview
  • Defines best practices in designing, developing, and deploying APIs securely
  • Provides hands-on tutorials covering key aspects in API security
  • Helps you choose between the available standards for securing APIs
おすすめポイントをすべて見る

書籍の購入

イーブック ¥3,574
価格の適用国: Japan (日本円価格は個人のお客様のみ有効) (小計)
  • ISBN 978-1-4842-2050-4
  • ウォーターマーク付、 DRMフリー
  • ファイル形式: EPUB, PDF
  • どの電子書籍リーダーからでもすぐにお読みいただけます。
  • ご購入後、すぐにダウンロードしていただけます。
ソフトカバー ¥4,003
価格の適用国: Japan (日本円価格は個人のお客様のみ有効) (小計)
  • ISBN 978-1-4842-2049-8
  • 個人のお客様には、世界中どこでも配送料無料でお届けします。
  • Immediate ebook access, if available*, with your print order
  • Usually dispatched within 3 to 5 business days.
この書籍について

Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs. 
Enterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits. 
Security must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack. 

What You Will Learn

  • Securely design, develop, and deploy enterprise APIs
  • Pick security standards and protocols to match business needs
  • Mitigate security exploits by understanding the OAuth 2.0 threat landscape
  • Federate identities to expand business APIs beyond the corporate firewall
  • Protect microservices at the edge by securing their APIs
  • Develop native mobile applications to access APIs securely
  • Integrate applications with SaaS APIs protected with OAuth 2.0

Who This Book Is For

Enterprise security architects who are interested in best practices around designing APIs. The book is also for developers who are building enterprise APIs and integrating with internal and external applications. 

著者について

Prabath Siriwardena is an identity evangelist, author, blogger, and VP of Identity Management and Security at WSO2. He has more than 11 years of industry experience in designing and building critical identity and access management (IAM) infrastructure for global enterprises, including many Fortune 100/500 companies. As a technology evangelist, Prabath has published five books. He blogs on various topics from blockchain, PSD2, GDPR, and IAM to microservices security. He also runs a YouTube channel. Prabath has spoken at many conferences, including RSAConference, Identiverse, European Identity Conference, Consumer Identity World USA, API World, API Strategy and Practice Con, QCon, OSCON, and WSO2Con. He has traveled the world conducting workshops and meetups to evangelize IAM communities. He is the founder of the Silicon Valley IAM User Group, which is the largest IAM meetup in the San Francisco Bay Area.

Table of contents (22 chapters)

Table of contents (22 chapters)

書籍の購入

イーブック ¥3,574
価格の適用国: Japan (日本円価格は個人のお客様のみ有効) (小計)
  • ISBN 978-1-4842-2050-4
  • ウォーターマーク付、 DRMフリー
  • ファイル形式: EPUB, PDF
  • どの電子書籍リーダーからでもすぐにお読みいただけます。
  • ご購入後、すぐにダウンロードしていただけます。
ソフトカバー ¥4,003
価格の適用国: Japan (日本円価格は個人のお客様のみ有効) (小計)
  • ISBN 978-1-4842-2049-8
  • 個人のお客様には、世界中どこでも配送料無料でお届けします。
  • Immediate ebook access, if available*, with your print order
  • Usually dispatched within 3 to 5 business days.
Loading...

この書籍のサービス情報

あなたへのおすすめ

Loading...

書誌情報

Bibliographic Information
Book Title
Advanced API Security
Book Subtitle
OAuth 2.0 and Beyond
Authors
Copyright
2020
Publisher
Apress
Copyright Holder
Prabath Siriwardena
イーブック ISBN
978-1-4842-2050-4
DOI
10.1007/978-1-4842-2050-4
ソフトカバー ISBN
978-1-4842-2049-8
Edition Number
2
Number of Pages
XIX, 449
Number of Illustrations
96 b/w illustrations
Topics

*immediately available upon purchase as print book shipments may be delayed due to the COVID-19 crisis. ebook access is temporary and does not include ownership of the ebook. Only valid for books with an ebook version. Springer Reference Works are not included.