Advanced API Security: The Definitive Guide to API Security, 2/e

Prabath Siriwardena

買這商品的人也買了...

商品描述

This book will prepare you to meet the next wave of challenges in enterprise security, guiding you through and sharing best practices for designing APIs for rock-solid security. It will explore different security standards and protocols, helping you choose the right option for your needs. Advanced API Security, Second Edition explains in depth how to secure APIs from traditional HTTP Basic Authentication to OAuth 2.0 and the standards built around it. Keep your business thriving while keeping enemies away. Build APIs with rock-solid security. The book takes you through the best practices in designing APIs for rock-solid security, provides an in depth understanding of most widely adopted security standards for API security and teaches you how to compare and contrast different security standards/protocols to find out what suits your business needs, the best.
 
This new edition enhances all the topics discussed in its predecessor with the latest up to date information, and provides more focus on beginners to REST, JSON, Microservices and API security. Additionally, it covers how to secure APIs for the Internet of Things (IoT).
 
Audience:
 

The Advanced API Security 2nd Edition is for Enterprise Security Architects and Developers who are designing, building and managing APIs. The book will provide guidelines, best practices in designing APIs and threat mitigation techniques for Enterprise Security Architects while developers would be able to gain hands-on experience by developing API clients against Facebook, Twitter, Salesforce and many other cloud service providers.

 
What you’ll learn
 
• Build APIs with rock-solid security by understanding best practices and design guidelines.
• Compare and contrast different security standards/protocols to find out what suits your busine

ss needs, the best.• Expand business APIs to partners and outsiders with Identity Federation.

• Get hands-on experience in developing clients against Facebook, Twitter, and Salesforce APIs.
 

• Understand and learn how to secure Internet of Things.

 

商品描述(中文翻譯)

這本書將使您能夠應對企業安全領域中的下一波挑戰,引導您通過並分享設計堅固安全性API的最佳實踐。它將探討不同的安全標準和協議,幫助您選擇適合您需求的選項。《Advanced API Security, Second Edition》深入解釋了如何從傳統的HTTP基本身份驗證到OAuth 2.0及其相關標準來保護API。在保持敵人遠離的同時,使您的業務蓬勃發展。構建具有堅固安全性的API。本書將引導您遵循設計堅固安全性API的最佳實踐,深入了解最廣泛採用的API安全性標準,並教您如何比較和對比不同的安全標準/協議,以找到最適合您業務需求的選擇。

這本新版書籍通過最新的資訊增強了前一版中討論的所有主題,並更加關注REST、JSON、微服務和API安全性的初學者。此外,它還介紹了如何為物聯網(IoT)保護API。

目標讀者群:
《Advanced API Security 2nd Edition》適合企業安全架構師和開發人員,他們正在設計、構建和管理API。本書將為企業安全架構師提供指南、設計API的最佳實踐和威脅緩解技術,而開發人員則可以通過開發與Facebook、Twitter、Salesforce和其他許多雲服務提供商的API客戶端來獲得實踐經驗。

您將學到的內容:
- 通過了解最佳實踐和設計準則,構建具有堅固安全性的API。
- 比較和對比不同的安全標準/協議,找到最適合您業務需求的選擇。
- 通過身份聯合擴展業務API給合作夥伴和外部人員使用。
- 通過開發與Facebook、Twitter和Salesforce的API客戶端,獲得實踐經驗。
- 理解並學習如何保護物聯網。

以上是本書的簡介和目標讀者群,以及您將學到的內容。