API security

API security for dummies

Now my Mum starts asking me about API Security

If you get questions from friends or family around topics than usual are things you consider important but have a certain "nerd factor" then...
OWASP Top 10

API Security makes it into OWASP Top 10 RC1

The first Release Candidate of the popular OWASP Top 10 contained “under protected APIs” as one of the Top 10 things to watch out...
API security tactics

Six tactics to secure your APIs proactively

When talking about API security, some people just want to turn on a switch and would like to get a green light on being...
API attack prevention

API attack prevention, a real-life example

I posted a previous article about the ways to protect Web Services and protect REST APIs and got contacted to help with an inquiry around how...
API quota

What is API Throttling, API Quota, Rate Limiting and Burst?

In the world of APIs, nobody gives direct access to his resources because you never know how much your services are going to be...
REST API security risks

Should REST API security risks keep you awake at night?

With the growth of REST APIs inside enterprises but also outside their boundaries in their ecosystem, monitoring, protecting and preventing attacks is key and...
Web Security Service

Zoom on Web Service Security

API Security is an important topic and I would like in this article to get deeper into the specific case of Web Service Security. Web...
API keys

How to protect your API keys?

When it comes to authenticating API clients, a common solution is to deliver an API key to each of your API clients. As the API...

#CybSec15—Cyber Security Summit—Switzerland

I attended the Cyber Security Summit (#CybSec15) in Yverdon, Switzerland. This event gathered over 200 IT security specialists, along with conferences and workshops. Yverdon is...
Les Assises de la Sécurité

"Les Assises de la Sécurité" in Monaco

Monaco is a very glamorous place, it's well known for royalty, its palace on top of the rock, its F1 race and the wealth...

Most popular posts

What are the different types of APIs?

There isn't just one type of APIs but actually three main types of APIs: Open APIs - aka Public APIs - are publicly available...
MASA mesh

What is MASA – Mesh App and Service Architecture?

MASA is a new architectural model introduced by Gartner which stands for Mesh app and service architecture. It reflects what has emerged over the...

How to easily secure your APIs with API keys and OAuth?

Securing your API does sound like a complicated thing but there are some basic things you can consider to setup your API in a...
API quota

What is API Throttling, API Quota, Rate Limiting and Burst?

In the world of APIs, nobody gives direct access to his resources because you never know how much your services are going to be...

What is API Lifecycle Management?

API Lifecycle Management is a term illustrating the need to manage all steps in a life of an API, from creation to retirement. APIs are...