Advanced API Security
Securing APIs with OAuth 2.0, OpenID Connect, JWS, and JWE
Published on 11. August 2014
Book
Paperback/Softback
XIV, 260 pages
978-1-4302-6818-5 (ISBN)
Description
Advanced API Security is a complete reference to the next wave of challenges in enterprise security--securing public and private APIs. API adoption in both consumer and enterprises has gone beyond predictions. It has become the 'coolest' way of exposing business functionalities to the outside world. Both your public and private APIs, need to be protected, monitored and managed. Security is not an afterthought, but API security has evolved a lot in last five years. The growth of standards, out there, has been exponential. That's where AdvancedAPI Security comes in--to wade through the weeds and help you keep the bad guys away while realizing the internal and external benefits of developing APIs for your services. Our expert author guides you through the maze of options and shares industry leading best practices in designing APIs for rock-solid security. The book will explain, in depth, securing APIs from quite traditional HTTP Basic Authentication to OAuth 2.0 and the standards built around it. Build APIs with rock-solid security today with Advanced API Security.Takes you through the best practices in designing APIs for rock-solid security.Provides an in depth tutorial of most widely adopted security standards for API security.Teaches you how to compare and contrast different security standards/protocols to find out what suits your business needs the best.
More details
Edition
1st ed.
Language
English
Place of publication
CA
United States
Publishing group
Springer-Verlag Berlin and Heidelberg GmbH & Co. KG
Target group
Professional and scholarly
Popular/general
Illustrations
56 s/w Abbildungen
56 Illustrations, black and white; XIV, 260 p. 56 illus.
Dimensions
Height: 25.4 cm
Width: 17.8 cm
Weight
4909 gr
ISBN-13
978-1-4302-6818-5 (9781430268185)
DOI
10.1007/978-1-4302-6817-8
Schweitzer Classification
Other editions
New editions
Book
12/2019
2nd Edition
APress
€48.14
Shipment within 15-20 days
Additional editions
E-Book
08/2014
APress
€66.99
Available for download
Person
Prabath Siriwardena is the Director of Security Architecture at WSO2 Inc., a company that produces a wide variety of open source software from data to screen. He is a member of OASIS Identity Metasystem Interoperability (IMI) TC,OASIS eXtensible Access Control Markup Language (XACML) TC, OASIS Security Services (SAML) TC, OASIS Identity in the Cloud TC and OASIS Cloud Authorization (CloudAuthZ) TC. Prabath is also a member of Apache Axis PMC and has spoken at numerous international conferences including OSCON, ApacheCon, WSO2Con, EIC, IDentity Next and OSDC. He has more than 9 years industry experience and has worked with many Fortune 100 companies.
Content
Managed APIsSecurity by DesignHTTP Basic/Digest AuthenticationMutual Authentication and Transport Level SecurityIdentity DelegationOAuth 1.0OAuth 2.0 AND Bearer Token ProfileOAuth 2.0 MAC Token ProfileOauth 2.0 ProfilesUser Managed Access (UMA)FederationOpenID ConnectJWT, JWS, and JWEPatterns & Practices