What do you think?
Rate this book
Advanced API Security: OAuth 2.0 and Beyond
This book will prepare you to meet the next wave of challenges in enterprise security, guiding you through and sharing best practices for designing APIs for rock-solid security. It will explore different security standards and protocols, helping you choose the right option for your needs. Advanced API Security, Second Edition explains in depth how to secure APIs from traditional HTTP Basic Authentication to OAuth 2.0 and the standards built around it. Keep your business thriving while keeping enemies away. Build APIs with rock-solid security. The book takes you through the best practices in designing APIs for rock-solid security, provides an in depth understanding of most widely adopted security standards for API security and teaches you how to compare and contrast different security standards/protocols to find out what suits your business needs, the best.
This new edition enhances all the topics discussed in its predecessor with the latest up to date information, and provides more focus on beginners to REST, JSON, Microservices and API security. Additionally, it covers how to secure APIs for the Internet of Things (IoT).
Audience:
The Advanced API Security 2nd Edition is for Enterprise Security Architects and Developers who are designing, building and managing APIs. The book will provide guidelines, best practices in designing APIs and threat mitigation techniques for Enterprise Security Architects while developers would be able to gain hands-on experience by developing API clients against Facebook, Twitter, Salesforce and many other cloud service providers.
What you'll learn
- Build APIs with rock-solid security by understanding best practices and design guidelines.- Compare and contrast different security standards/protocols to find out what suits your business needs, the best.- Expand business APIs to partners and outsiders with Identity Federation.- Get hands-on experience in developing clients against Facebook, Twitter, and Salesforce APIs.- Understand and learn how to secure Internet of Things.
This new edition enhances all the topics discussed in its predecessor with the latest up to date information, and provides more focus on beginners to REST, JSON, Microservices and API security. Additionally, it covers how to secure APIs for the Internet of Things (IoT).
Audience:
The Advanced API Security 2nd Edition is for Enterprise Security Architects and Developers who are designing, building and managing APIs. The book will provide guidelines, best practices in designing APIs and threat mitigation techniques for Enterprise Security Architects while developers would be able to gain hands-on experience by developing API clients against Facebook, Twitter, Salesforce and many other cloud service providers.
What you'll learn
- Build APIs with rock-solid security by understanding best practices and design guidelines.- Compare and contrast different security standards/protocols to find out what suits your business needs, the best.- Expand business APIs to partners and outsiders with Identity Federation.- Get hands-on experience in developing clients against Facebook, Twitter, and Salesforce APIs.- Understand and learn how to secure Internet of Things.
- GenresTechnology
449 pages, Paperback
Published December 17, 2019
20 people are currently reading
50 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 2 of 2 reviews
July 15, 2021
An excellent book, no doubts. Everything is explained in a clear and concise way. Step by step of the different processes (encryption, serialization, ...) makes it even easier to understand and recap. Plenty of nice examples, in Java, that go beyond Hello World. Topics are up to date for 2021. Really an excellent but still user friendly book for anyone interested in APIs, Security, Microservices and JSON.
May 21, 2023
Ótimo overview sobre o assunto, passando por princípios básicos de segurança de APIs até os mais diversos fundamentos do OAuth 2.0.
Talvez pelo tipo do conteúdo e, até porque não estamos aplicando no dia-a-dia todos os cenários apresentados, é um livro que pode ser bem maçante de ser lido de ponta-a-ponta.
Talvez pelo tipo do conteúdo e, até porque não estamos aplicando no dia-a-dia todos os cenários apresentados, é um livro que pode ser bem maçante de ser lido de ponta-a-ponta.
Displaying 1 - 2 of 2 reviews