Time
1:00 PM - 1:30 PM (EDT)
Name
Black and Blue: Attacker's and Defender's View of API Vulnerabilities
Description

APIs are a foundational innovation in today’s app-driven world and increasingly becoming the main target for attackers. How do you protect yourself? Matt Tesauro, distinguished engineer, will walk you through how attackers use techniques like broken object level authorization (BOLA) attacks against an API, and how attackers gain access to critical data. Understand how attackers find and exploit vulnerabilities so you can gain insight into why many traditional security approaches fail against a modern API attack. Lastly, discover what this same hack looks like on the defender’s side so you can proactively secure your APIs enabling your dev teams to go fast without breaking things.