[Owasp-germany] 25. Dresdner OWASP Stammtisch
Benjamin.Kellermann at gmx.de
Mon Oct 29 10:32:35 UTC 2018
Am 02.11.2018 findet der 25. Dresdner OWASP Stammtisch im CCC
Hackerspace im Zentralwerk, Riesaer Straße 32 statt.
Wir haben dieses Mal Philippe De Ryck aus Holland zu Gast. Deshalb wird
der Vortrag auf Englisch sein.
Thema: Common API security pitfalls
The shift towards an API landscape indicates a significant evolution in
applications have sparked an explosion of easily-accessible REST APIs.
But how do you protect access to your API? Which security aspects are
no longer relevant? Which security features are an absolutely must-
have, and which additional security measures do you need to take into
These are hard questions, as evidenced by the deployment of numerous
insecure APIs. Attend this session to find out about common API
security pitfalls, that often result in compromised user accounts and
unauthorized access to your data. We expose the problem that lies at
the root of each of these pitfalls, and offer actionable advice to
address these security problems. After this session, you will know how
to assess the security of your APIs, and the best practices to improve
them towards the future.
Philippe De Ryck is the founder of Pragmatic Web Security, where he
travels the world to train developers on web security and security
engineering. He holds a Ph.D. in web security from KU Leuven. Google
recognizes Philippe as a Google Developer Expert for his knowledge of
web security and security in Angular applications.
More information about the Owasp-germany