國立高雄大學圖資館 |

Language: English

Back

Advanced API securityOAuth 2.0 and b...

Siriwardena, Prabath.

Advanced API securityOAuth 2.0 and beyond /

Record Type:	Electronic resources : Monograph/item
Title/Author:	Advanced API securityby Prabath Siriwardena.
Reminder of title:	OAuth 2.0 and beyond /
Author:	Siriwardena, Prabath.
Published:	Berkeley, CA :Apress :2020.
Description:	xix, 449 p. :ill., digital ;24 cm.
Contained By:	Springer eBooks
Subject:	Application softwareSecurity measures.
Online resource:	https://doi.org/10.1007/978-1-4842-2050-4
ISBN:	9781484220504$q(electronic bk.)

Advanced API securityOAuth 2.0 and beyond /
Siriwardena, Prabath.

Advanced API securityOAuth 2.0 and beyond /[electronic resource] :by Prabath Siriwardena. - Second edition. - Berkeley, CA :Apress :2020. - xix, 449 p. :ill., digital ;24 cm.

Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs. Enterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits. Security must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack. You will: Securely design, develop, and deploy enterprise APIs Pick security standards and protocols to match business needs Mitigate security exploits by understanding the OAuth 2.0 threat landscape Federate identities to expand business APIs beyond the corporate firewall Protect microservices at the edge by securing their APIs Develop native mobile applications to access APIs securely Integrate applications with SaaS APIs protected with OAuth 2.0.

ISBN: 9781484220504$q(electronic bk.)

Standard No.: 10.1007/978-1-4842-2050-4doiSubjects--Topical Terms:

484782
Application software
--Security measures.

LC Class. No.: QA76.76.A65 / S575 2020

Dewey Class. No.: 005.3

Advanced API securityOAuth 2.0 and beyond /
LDR:02732nmm a2200325 a 4500 001 575872
003 DE-He213
005 20200603111618.0
006 m d
007 cr nn 008maaau
008 201027s2020 cau s 0 eng d
020 $a 9781484220504$q(electronic bk.)
020 $a 9781484220498$q(paper)
024 7 $a 10.1007/978-1-4842-2050-4 $2 doi
035 $a 978-1-4842-2050-4
040 $a GP $c GP
041 0 $a eng
050 4 $a QA76.76.A65 $b S575 2020
072 7 $a UR $2 bicssc
072 7 $a COM053000 $2 bisacsh
072 7 $a UR $2 thema
082 0 4 $a 005.3 $2 23
090 $a QA76.76.A65 $b S619 2020
100 1 $a Siriwardena, Prabath. $3 696805
245 1 0 $a Advanced API security $h [electronic resource] : $b OAuth 2.0 and beyond / $c by Prabath Siriwardena.
250 $a Second edition.
260 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2020.
300 $a xix, 449 p. : $b ill., digital ; $c 24 cm.
520 $a Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs. Enterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits. Security must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack. You will: Securely design, develop, and deploy enterprise APIs Pick security standards and protocols to match business needs Mitigate security exploits by understanding the OAuth 2.0 threat landscape Federate identities to expand business APIs beyond the corporate firewall Protect microservices at the edge by securing their APIs Develop native mobile applications to access APIs securely Integrate applications with SaaS APIs protected with OAuth 2.0.
650 0 $a Application software $x Security measures. $3 484782
650 1 4 $a Security. $3 760527
650 2 4 $a Special Purpose and Application-Based Systems. $3 274487
650 2 4 $a Systems and Data Security. $3 274481
650 2 4 $a Programming Languages, Compilers, Interpreters. $3 274102
710 2 $a SpringerLink (Online service) $3 273601
773 0 $t Springer eBooks
856 4 0 $u https://doi.org/10.1007/978-1-4842-2050-4
950 $a Professional and Applied Computing (Springer-12059)