OWASP Standard Classification: API Security Top 10 - A Beginner's Guide to Mitigation - I. Mauny

Показать описание

OWASP Standard Classification: API Security Top 10 - A Beginner's Guide to Mitigation

SPEAKER:
Isabelle Mauny

ABSTRACT
In recent years, large reputable companies such as Facebook, Google and Equifax have suffered major data breaches that combined exposed the personal information of hundreds of millions of people worldwide. The common vector linking these breaches – APIs. The scale and magnitude of these breaches are the reason API security has been launched into the forefront of enterprise security concerns – now forcing us to rethink the way we approach API security as a whole.

OWASP Top 10 project has for a long time been the standard list of top vulnerabilities to look for and mitigate in the world of web applications.

APIs represent a significantly different set of threats, attack vectors, and security best practices. This caused the OWASP community to launch OWASP API Security project in 2019.

In this session we’ll discuss:
· What risks are associated with each of the OWASP Top 10 for API Security
· Solutions you can implement to mitigate these risks
· Strategies for implementing API security across the entire lifecycle

Managed by the OWASP® Foundation

Рекомендации по теме

Комментарии

The audio quality is challenging at times. Good presentation.

allanwind

OWASP Standard Classification: API Security Top 10 - A Beginner's Guide to Mitigation - I. Mauny

OWASP Standard Classification: API Security Top 10 - A Beginner's Guide to Mitigation - I. Maun...

OWASP Standard Classification: Automate Security, Don't Tell Your Boss - M. Tesauro

OWASP Standard Classification: Rough Consensus - An OWASP Story - Jeff Williams

OWASP Standard Classification: How To Review Code For Vulnerabilities - Vickie Li

OWASP Standard Classification: Threat Modeling the CI/CD Pipeline to Improve Softwar... - D. Cornell

OWASP Standard Classification: Security Chaos Engineering - Turning the Tide in ... - A. Rinehart

OWASP Standard Classification: OWASP Application Gateway: What is it and how can you ... - G. Frei

OWASP Standard Classification: Purple Teaming with OWASP PurpleTeam - Kim Carter

OWASP Standard Classification: Everything You Always Wanted to Know About Finge... - N. Nikiforakis

Webinar - OWASP API Security Top 10 - 2023 Listing

OWASP Standard Classification: Live Q&A Session - Troy Hunt

API Security Part 2 - Mitigating OSWAP Top 10 threats for APIs

Addressing the 2023 OWASP API Security Top 10

OWASP TOP 10 Security API 2023 x GraphQL: An interactive workshop for developerswith Antoine

OWASP Standard Classification: DevSecOps in 2031: How robots and humans will ... - S. Streichsbier

API Security Fundamentals [2023]

OWASP cautions against “insufficient logging & monitoring.” What does sufficient l...- Rob Dicki...

Are you safe from OWASP #11? - Matt Tesauro

Domain 2.30: Open Web Application Security Project (OWASP)/Top10 - CompTIA Security+ SY0 601

Using the OWASP Top 10 As The Foundation for Security and Privacy Programs Across Your Organization

API Security and Legal Risk Management - OWASP Sydney

Securing Your Web Applications: A Beginner's Guide to OWASP and the Top 10 Vulnerabilities

Standard Classification OWASP Application Gateway What is it and how can you G Frei

Pentesting Swift Application with OWASP iGoat - Swaroop Yermalkar - AppSecUSA 2018