𝔖 Scriptorium
✦   LIBER   ✦
πŸ“

API Security in Action

✍ Scribed by Neil Madden

Publisher
Manning Publications Co.
Year
2021
Tongue
English
Category
Library
⬇  Acquire This Volume

No coin nor oath required. For personal study only.

✦ Synopsis

"A comprehensive guide to designing and implementing secure services. A must-read book for all API practitioners who manage security." - Gilberto Taccari, Penta

API Security in Action teaches you how to create secure APIs for any situation. By following this hands-on guide you’ll build a social network API while mastering techniques for flexible multi-user security, cloud key management, and lightweight cryptography.

A web API is an efficient way to communicate with an application or service. However, this convenience opens your systems to new security risks. API Security in Action gives you the skills to build strong, safe APIs you can confidently expose to the world. Inside, you’ll learn to construct secure and scalable REST APIs, deliver machine-to-machine interaction in a microservices architecture, and provide protection in resource-constrained IoT (Internet of Things) environments.

Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.

About the technology
APIs control data sharing in every service, server, data store, and web client. Modern data-centric designsβ€”including microservices and cloud-native applicationsβ€”demand a comprehensive, multi-layered approach to security for both private and public-facing APIs.

About the book
API Security in Action teaches you how to create secure APIs for any situation. By following this hands-on guide you’ll build a social network API while mastering techniques for flexible multi-user security, cloud key management, and lightweight cryptography. When you’re done, you’ll be able to create APIs that stand up to complex threat models and hostile environments.

What's inside

Authentication
Authorization
Audit logging
Rate limiting
Encryption

About the reader
For developers with experience building RESTful APIs. Examples are in Java.

About the author
Neil Madden has in-depth knowledge of applied cryptography, application security, and current API security technologies. He holds a Ph.D. in Computer Science.

✦ Table of Contents

PART 1 - FOUNDATIONS

1 What is API security?

2 Secure API development

3 Securing the Natter API

PART 2 - TOKEN-BASED AUTHENTICATION

4 Session cookie authentication

5 Modern token-based authentication

6 Self-contained tokens and JWTs

PART 3 - AUTHORIZATION

7 OAuth2 and OpenID Connect

8 Identity-based access control

9 Capability-based security and macaroons

PART 4 - MICROSERVICE APIs IN KUBERNETES

10 Microservice APIs in Kubernetes

11 Securing service-to-service APIs

PART 5 - APIs FOR THE INTERNET OF THINGS

12 Securing IoT communications

13 Securing IoT APIs

πŸ“œ SIMILAR VOLUMES

API Security in Action
πŸ“ API Security in Action
✍ Neil Madden πŸ“‚ Library πŸ“… 2020 πŸ› Manning Publications 🌐 English

A web API is an efficient way to communicate with an application or service. However, this convenience opens your systems to new security risks. API Security in Action gives you the skills to build strong, safe APIs you can confidently expose to the world. Inside, you’ll learn to construct secure an

Kafka Streams in Action: Real-time apps
πŸ“ Kafka Streams in Action: Real-time apps and microservices with the Kafka Streaming API
✍ Bill Bejeck πŸ“‚ Library πŸ“… 2018 πŸ› Manning Publications 🌐 English

Kafka Streams is a library designed to allow for easy stream processing of data flowing into a Kafka cluster. Stream processing has become one of the biggest needs for companies over the last few years as quick data insight becomes more and more important but current solutions can be complex and lar

Microservices Security in Action
πŸ“ Microservices Security in Action
✍ Prabath Siriwardena, Nuwan Dias πŸ“‚ Library πŸ“… 2020 πŸ› Manning Publications 🌐 English

Microservices Security in Action teaches readers how to secure their microservices applications code and infrastructure. After a straightforward introduction to the challenges of microservices security, the book covers fundamentals to secure both the application perimeter and service-to-service c

Spring Security in Action
πŸ“ Spring Security in Action
✍ Laurentiu Spilca πŸ“‚ Library πŸ“… 2020 πŸ› Manning Publications 🌐 English

Spring Security in Action shows you how to prevent cross-site scripting and request forgery attacks before they do damage. You’ll start with the basics, simulating password upgrades and adding multiple types of authorization. As your skills grow, you'll adapt Spring Security to new architectures and

Microservices Security in Action
πŸ“ Microservices Security in Action
✍ Prabath Siriwardena, Nuwan Dias πŸ“‚ Library πŸ“… 2020 πŸ› Manning Publications 🌐 English

Microservices Security in Action is filled with solutions, teaching best practices for throttling and monitoring, access control, and microservice-to-microservice communications. Detailed code samples, exercises, and real-world use cases help you put what you've learned into production. Along the wa