DZone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
Refcards Trend Reports Events Over 2 million developers have joined DZone. Join Today! Thanks for visiting DZone today,
Edit Profile Manage Email Subscriptions Moderation Admin Console How to Post to DZone Article Submission Guidelines
View Profile
Sign Out
Refcards
Trend Reports
Events
Zones
Culture and Methodologies Agile Career Development Methodologies Team Management
Data Engineering AI/ML Big Data Data Databases IoT
Software Design and Architecture Cloud Architecture Containers Integration Microservices Performance Security
Coding Frameworks Java JavaScript Languages Tools
Testing, Deployment, and Maintenance Deployment DevOps and CI/CD Maintenance Monitoring and Observability Testing, Tools, and Frameworks
Culture and Methodologies
Agile Career Development Methodologies Team Management
Data Engineering
AI/ML Big Data Data Databases IoT
Software Design and Architecture
Cloud Architecture Containers Integration Microservices Performance Security
Coding
Frameworks Java JavaScript Languages Tools
Testing, Deployment, and Maintenance
Deployment DevOps and CI/CD Maintenance Monitoring and Observability Testing, Tools, and Frameworks
  1. DZone
  2. Data Engineering
  3. Databases
  4. API Security (Free eBook)

API Security (Free eBook)

Do not think that application and security and API security are the same, or hackers will have a field day.

Tom Smith user avatar by
Tom Smith
CORE ·
Jun. 18, 18 · Opinion
Like (3)
Save
Tweet
Share
6.56K Views

Join the DZone community and get the full member experience.

Join For Free

Great to be able to talk to Randall Degges, Head of Developer Advocacy, and Keith Casey, API Problem Solver at Okta during Oktane18 about their new book on API Security.

As part of Okta's commitment to making developers' lives easier, they wrote this book because we're now living in an API-first world and API security is not well understood — for applications or IoT devices. 

IoT devices need to authenticate securely to another device before they begin transmitting data.

API Security provides everything a developer needs to know to develop API security. Standards are provided as are core protocols for authentication and authorization.

It is incumbent on today's API builders to be smart, informed, and proactive. Do this by focusing on best practices and keep looking for new ones. Implement modern approaches that have been proven successful in real, practical experience.

Topics in the book include:

  • Transport Layer Security

  • DOS Mitigation Strategies

  • Sanitizing Data

  • Managing API Credentials

  • Authentication

  • Authorization

  • API Gateways

Developers will learn how Transport Layer Security protects data in transit, the different kinds of DOS attacks and strategies to mitigate them, and some of the pitfalls when trying to sanitize data. The book also provides best practices for managing API credentials, the core differences between authentication and authorization, and the best ways to handle each, as well as the role of API gateways.

Developers and everyone in an organization need to understand that API and application security are completely different. This is generally useful to the developer community.

The API and developer team at Okta are trying to make the world safer for people building applications. Click here for a link to the book.

API Application security

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • Distributed SQL: An Alternative to Database Sharding
  • Understanding gRPC Concepts, Use Cases, and Best Practices
  • Using the PostgreSQL Pager With MariaDB Xpand
  • Web Application Architecture: The Latest Guide

Comments

Partner Resources

X

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends: