Zur Startseite gehen
0,00 €*
Cover: 9781484220498 | Advanced API Security | The Definitive Guide to API Security | Buch
Dekorationsartikel gehören nicht zum Leistungsumfang.
Advanced API Security
OAuth 2.0 and Beyond
Taschenbuch von Prabath Siriwardena
Sprache: Englisch

42,10 €*

inkl. MwSt.

Versandkostenfrei per Post / DHL

Lieferzeit 4-7 Werktage

Kategorien:
Beschreibung
Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs.
Enterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits.
Security must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack.
What You Will Learn
Securely design, develop, and deploy enterprise APIs
Pick security standards and protocols to match business needs
Mitigate security exploits by understanding the OAuth 2.0 threat landscape
Federate identities to expand business APIs beyond the corporate firewall
Protect microservices at the edge by securing their APIs
Develop native mobile applications to access APIs securely
Integrate applications with SaaS APIs protected with OAuth 2.0
Who This Book Is For
Enterprise security architects who are interested in best practices around designing APIs. The book is also for developers who are building enterprise APIs and integrating with internal and external applications.
Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs.
Enterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits.
Security must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack.
What You Will Learn
Securely design, develop, and deploy enterprise APIs
Pick security standards and protocols to match business needs
Mitigate security exploits by understanding the OAuth 2.0 threat landscape
Federate identities to expand business APIs beyond the corporate firewall
Protect microservices at the edge by securing their APIs
Develop native mobile applications to access APIs securely
Integrate applications with SaaS APIs protected with OAuth 2.0
Who This Book Is For
Enterprise security architects who are interested in best practices around designing APIs. The book is also for developers who are building enterprise APIs and integrating with internal and external applications.
Über den Autor
Prabath Siriwardena is an identity evangelist, author, blogger, and VP of Identity Management and Security at WSO2. He has more than 11 years of industry experience in designing and building critical identity and access management (IAM) infrastructure for global enterprises, including many Fortune 100/500 companies. As a technology evangelist, Prabath has published five books. He blogs on various topics from blockchain, PSD2, GDPR, and IAM to microservices security. He also runs a YouTube channel. Prabath has spoken at many conferences, including RSAConference, Identiverse, European Identity Conference, Consumer Identity World USA, API World, API Strategy and Practice Con, QCon, OSCON, and WSO2Con. He has traveled the world conducting workshops and meetups to evangelize IAM communities. He is the founder of the Silicon Valley IAM User Group, which is the largest IAM meetup in the San Francisco Bay Area.
Zusammenfassung
  • Security books on Amazon have improved in sales recently (sales rank), probably due to the issues arising around cloud computing, streaming data/on demand and
  • Early this year, API series published an 80 page book on OAuth which is covered in detail in our detail. So the time is ripe for more on security and programming security.
  • The first edition of the book got good review, and its a highly priced book.
Inhaltsverzeichnis
1. APIs Rule!.-2. Designing Security for APIs.-3. Securing APIs with Transport Layer Security (TLS).-4. OAuth 2.0 Fundamentals.-5. Edge Security with an API Gateway.-6. OpenID Connect (OIDC).-7. Message Level Security with JSON Web Signature.-8. Message Level Security with JSON Web Encryption.-9. OAuth 2.0 Profiles.-10. Accessing APIs via Native Mobile Apps.-11. OAuth 2.0 Token Binding.-12. Federating Access to APIs.-13. User Managed Access.-14. OAuth 2.0 Security.- 15. Patterns and Practices.- 16: A. The Evolution of Identity Delegation.- 17: B. OAuth 1.0.- 18: C. How Transport Layer Security Works.- 19: D. UMA Evolution.- 20: E. Base64URL Encoding.- 21: F. Basic/Digest Authentication.- 22: G. OAuth 2.0 MAC Token Profile.
Details
Erscheinungsjahr: 2019
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Medium: Taschenbuch
Seiten: 472
Inhalt: xix
449 S.
96 s/w Illustr.
449 p. 96 illus.
ISBN-13: 9781484220498
ISBN-10: 1484220498
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Siriwardena, Prabath
Auflage: 2nd ed.
Hersteller: Apress
Apress L.P.
Maße: 254 x 178 x 26 mm
Von/Mit: Prabath Siriwardena
Erscheinungsdatum: 17.12.2019
Gewicht: 0,88 kg
preigu-id: 108775404
Über den Autor
Prabath Siriwardena is an identity evangelist, author, blogger, and VP of Identity Management and Security at WSO2. He has more than 11 years of industry experience in designing and building critical identity and access management (IAM) infrastructure for global enterprises, including many Fortune 100/500 companies. As a technology evangelist, Prabath has published five books. He blogs on various topics from blockchain, PSD2, GDPR, and IAM to microservices security. He also runs a YouTube channel. Prabath has spoken at many conferences, including RSAConference, Identiverse, European Identity Conference, Consumer Identity World USA, API World, API Strategy and Practice Con, QCon, OSCON, and WSO2Con. He has traveled the world conducting workshops and meetups to evangelize IAM communities. He is the founder of the Silicon Valley IAM User Group, which is the largest IAM meetup in the San Francisco Bay Area.
Zusammenfassung
  • Security books on Amazon have improved in sales recently (sales rank), probably due to the issues arising around cloud computing, streaming data/on demand and
  • Early this year, API series published an 80 page book on OAuth which is covered in detail in our detail. So the time is ripe for more on security and programming security.
  • The first edition of the book got good review, and its a highly priced book.
Inhaltsverzeichnis
1. APIs Rule!.-2. Designing Security for APIs.-3. Securing APIs with Transport Layer Security (TLS).-4. OAuth 2.0 Fundamentals.-5. Edge Security with an API Gateway.-6. OpenID Connect (OIDC).-7. Message Level Security with JSON Web Signature.-8. Message Level Security with JSON Web Encryption.-9. OAuth 2.0 Profiles.-10. Accessing APIs via Native Mobile Apps.-11. OAuth 2.0 Token Binding.-12. Federating Access to APIs.-13. User Managed Access.-14. OAuth 2.0 Security.- 15. Patterns and Practices.- 16: A. The Evolution of Identity Delegation.- 17: B. OAuth 1.0.- 18: C. How Transport Layer Security Works.- 19: D. UMA Evolution.- 20: E. Base64URL Encoding.- 21: F. Basic/Digest Authentication.- 22: G. OAuth 2.0 MAC Token Profile.
Details
Erscheinungsjahr: 2019
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Medium: Taschenbuch
Seiten: 472
Inhalt: xix
449 S.
96 s/w Illustr.
449 p. 96 illus.
ISBN-13: 9781484220498
ISBN-10: 1484220498
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Siriwardena, Prabath
Auflage: 2nd ed.
Hersteller: Apress
Apress L.P.
Maße: 254 x 178 x 26 mm
Von/Mit: Prabath Siriwardena
Erscheinungsdatum: 17.12.2019
Gewicht: 0,88 kg
preigu-id: 108775404
Warnhinweis

Ähnliche Produkte

Ähnliche Produkte

Taschenbuch
Cover: 9780521540186 | The Object Primer | Scott W. Ambler | Taschenbuch | Paperback | 2015
The Object Primer
EAN: 9780521540186
Sprache: Englisch
Von/Mit: Scott W. Ambler

84,40 €*

Lieferzeit 4-7 Werktage

Taschenbuch
Cover: 9781617293764 | Get Programming with Haskell | Will Kurt | Taschenbuch | Englisch
Get Programming with Haskell
EAN: 9781617293764
Sprache: Englisch
Von/Mit: Will Kurt

49,85 €*

Lieferzeit 1-2 Wochen

Taschenbuch
Cover: 9780124201149 | Industrial Network Security | Eric D. Knapp (u. a.) | Taschenbuch
Industrial Network Security
Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems
EAN: 9780124201149
Sprache: Englisch
Von/Mit: Eric D. Knapp (u. a.)

71,90 €*

Lieferzeit 1-2 Wochen

Taschenbuch
Cover: 9781119491811 | The Cloud Adoption Playbook | Ingo Averdunk (u. a.) | Taschenbuch
The Cloud Adoption Playbook
Proven Strategies for Transforming Your Organization with the Cloud
EAN: 9781119491811
Sprache: Englisch
Von/Mit: Ingo Averdunk (u. a.)

27,75 €*

Lieferzeit 1-2 Wochen

Buch
Cover: 9783319946368 | Imaginary Mathematics for Computer Science | John Vince | Buch | 2018
Imaginary Mathematics for Computer Science
EAN: 9783319946368
Sprache: Englisch
Von/Mit: John Vince

75,95 €*

Lieferzeit 2-3 Wochen

Taschenbuch
Cover: 9781718500044 | Foundations of Information Security | A Straightforward Introduction
Foundations of Information Security
A Straightforward Introduction
EAN: 9781718500044
Sprache: Englisch
Von/Mit: Jason Andress

29,15 €*

Lieferzeit 1-2 Werktage

Buch
Cover: 9783662616352 | Network Hacks - Intensivkurs | Angriff und Verteidigung mit Python 3
Network Hacks - Intensivkurs
Angriff und Verteidigung mit Python 3
EAN: 9783662616352
Sprache: Deutsch
Von/Mit: Bastian Ballmann

64,99 €*

Lieferzeit 2-3 Wochen

Taschenbuch
Cover: 9781492082187 | Fundamentals of Deep Learning | Nithin Buduma (u. a.) | Taschenbuch
Fundamentals of Deep Learning
Designing Next-Generation Machine Intelligence Algorithms
EAN: 9781492082187
Sprache: Englisch
Von/Mit: Nithin Buduma (u. a.)

56,95 €*

Lieferzeit 1-2 Werktage

Taschenbuch
Cover: 9781492091066 | Learning Algorithms: A Programmer's Guide to Writing Better Code
Learning Algorithms
A Programmer's Guide to Writing Better Code
EAN: 9781492091066
Sprache: Englisch
Von/Mit: George Heineman

69,45 €*

Lieferzeit 1-2 Wochen

Taschenbuch
Cover: 9781789341652 | Bayesian Analysis with Python - Second Edition | Osvaldo Martin | Buch
Bayesian Analysis with Python - Second Edition
Introduction to statistical modeling and probabilistic programming using PyMC3 and ArviZ
EAN: 9781789341652
Sprache: Englisch
Von/Mit: Osvaldo Martin

56,75 €*

Lieferzeit 4-7 Werktage

Buch
Cover: 9781108835084 | The Science of Deep Learning | Iddo Drori | Buch | Gebunden | Englisch
The Science of Deep Learning
EAN: 9781108835084
Sprache: Englisch
Von/Mit: Iddo Drori

47,85 €*

Lieferzeit 1-2 Werktage

Taschenbuch
Cover: 9781805125228 | GPT-3 | The Ultimate Guide To Building NLP Products With OpenAI API
GPT-3
The Ultimate Guide To Building NLP Products With OpenAI API
EAN: 9781805125228
Sprache: Englisch
Von/Mit: Sandra Kublik (u. a.)

42,90 €*

Lieferzeit 1-2 Werktage

Diese Website verwendet Cookies, um eine bestmögliche Erfahrung bieten zu können. Mehr Informationen ...