Book description
- Securely design, develop, and deploy enterprise APIs
- Pick security standards and protocols to match business needs
- Mitigate security exploits by understanding the OAuth 2.0 threat landscape
- Federate identities to expand business APIs beyond the corporate firewall
- Protect microservices at the edge by securing their APIs
- Develop native mobile applications to access APIs securely
- Integrate applications with SaaS APIs protected with OAuth 2.0
Table of contents
- Cover
- Front Matter
- 1. APIs Rule!
- 2. Designing Security for APIs
- 3. Securing APIs with Transport Layer Security (TLS)
- 4. OAuth 2.0 Fundamentals
- 5. Edge Security with an API Gateway
- 6. OpenID Connect (OIDC)
- 7. Message-Level Security with JSON Web Signature
- 8. Message-Level Security with JSON Web Encryption
- 9. OAuth 2.0 Profiles
- 10. Accessing APIs via Native Mobile Apps
- 11. OAuth 2.0 Token Binding
- 12. Federating Access to APIs
- 13. User-Managed Access
- 14. OAuth 2.0 Security
- 15. Patterns and Practices
- The Evolution of Identity Delegation
- OAuth 1.0
- How Transport Layer Security Works?
- UMA Evolution
- Base64 URL Encoding
- Basic/Digest Authentication
- OAuth 2.0 MAC Token Profile
- Back Matter
Product information
- Title: Advanced API Security: OAuth 2.0 and Beyond
- Author(s):
- Release date: December 2019
- Publisher(s): Apress
- ISBN: 9781484220504
You might also like
book
Learning Go
Go is rapidly becoming the preferred language for building web services. While there are plenty of …
book
Building Microservices, 2nd Edition
As organizations shift from monolithic applications to smaller, self-contained microservices, distributed systems have become more fine-grained. …
book
Designing Data-Intensive Applications
Data is at the center of many challenges in system design today. Difficult issues need to …
book
Designing Distributed Systems
Without established design patterns to guide them, developers have had to build distributed systems from scratch, …