API Security in Depth

Presented by

Erez Yalon Director of Security Research at Checkmarx

About this talk

The OWASP API project addresses modern threats for API based applications. While traditional vulnerabilities like SQLi and XSS are becoming less common in APIs, there’s been an increase in vulnerabilities that are either specific to APIs or present a more significant risk, which many developers are unaware of. The presentation talks about: - The biggest challenge in APIs: authorization - OWASP top 10 for APIs, including examples - Tools for security engineers to perform pentest for APIs - Tips for developers on how to develop more secure API

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (53)
Subscribers (9452)
Checkmarx is constantly pushing the boundaries of Application Security Testing to make security seamless and simple for the world’s developers and security teams. As the AppSec testing leader, we deliver the unparalleled accuracy, coverage, visibility, and guidance our customers need to build tomorrow’s software securely and at speed.