5 Web Security Considerations for GraphQL

Presented by

Alban Diquet, Director of Engineering

About this talk

Learn about the importance of visibility and security for GraphQL. GraphQL is a popular data query language that makes it easier to get data from a server to a client via an API call. It is commonly deployed as a piece of the technology stack for modern web and mobile applications. However, the complex nature of GraphQL makes it easier for hackers to exploit if embedded APIs and cloud resources are not secure. Learn about the right way to protect your AppSec stack that traditional approaches do not yet offer. In this webinar, we’ll discuss the 5 most common GraphQL security vulnerabilities and how to leverage full stack security to overcome security gaps: *Inconsistent authorization checks (similar to REST Auth) *Failure to appropriately rate-limit *Introspection may help attackers *Introspection reveals non-public information *Cost of high depth queries
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (14)
Subscribers (2802)
Data Theorem is a leading provider of modern application security. Its core mission is to prevent AppSec data breaches. The Data Theorem Analyzer Engine continuously scans mobile and web applications, APIs, and cloud resources in search of security flaws and data privacy gaps. Our security products provide automated hacking and full application stack discovery that protects your data.