APIs have emerged as the number one attack vector for applications, and we’ve all seen the frequent headlines about API breaches and vulnerabilities. Gartner predicted this outcome way back in 2017, saying 2022 would be the year when API attacks took the #1 spot in web app attacks. The analysts were wrong. At the end of 2021, Gartner said “As 2022 approaches, this prediction could arguably be counted as “missed” — but only because we underestimated the steep rise in attacks on APIs.” Protecting APIs is hard. Traditional security and API management tools cannot protect against attacks, and pre-production insights are crucial to developing more secure APIs.

This workshop provides security professionals with the knowledge needed to assess and improve the security of their APIs. A mix of lectures, demos, and hands-on labs will give participants:

• Best practices for discovering, protecting, and remediating API vulnerabilities
• Practical and immediately applicable security advice for security professionals
• Concrete scenarios applying to your applications