API Security Bootcamp

Join our webinar

Signup now

Thursday, 28th April 10am - 12pm CEST

Register now
Screen Shot 2022-04-07 at 13.15.00

Overview

APIs are increasing in size, value and connection complexity. Traditional tools like WAFs and API gateways depend on signatures to identify attack patterns and can’t detect or prevent new attack methods that target the unique nature of APIs.
 
APIs are a foundational element of Digitalisation: From banks, retail and transportation to IoT, autonomous vehicles and smart cities, APIs are a critical part of modern mobile, SaaS and web applications and can be found in customer-facing, partner-facing and internal applications. By nature, APIs expose application logic and sensitive data such as Personally Identifiable Information (PII) and because of this have increasingly become a target for attackers.

Agenda

  • Modern APIs Basics
  • State of API security
  • OWASP API top 10 explained by attacks that made the news
  • API in MITRE ATT&CK v10 Matrix
  • Attack simulation lessons learned
  • API Security Best Practices
  • Securing APIs
salt-security-nuaware

Speakers

AOh14Ggk9Xrxw_C9wM3iGbLEabDLr0O0trcv3QWlHloc=s80

Nicolas Jeanselme

API Security engineer at Salt Security.

About Salt Security

Salt delivers the context you need to protect your APIs across build, deploy, and runtime phases. We combine complete coverage and an ML/AI-driven big data engine to provide that context to show you all your APIs, stop attackers during the early stages of an attempted attack, and share insights to improve API security posture.