1 What is API security?

This chapter covers

What is an API?
What makes an API secure or insecure?
Defining security in terms of goals
Identifying threats and vulnerabilities
Using mechanisms to achieve security goals

Application Programming Interfaces (APIs) are everywhere. Open your smartphone or tablet and look at the apps you have installed. Almost without exception, those apps are talking to one or more remote APIs to download fresh content and messages, poll for notifications, upload your new content, and perform actions on your behalf.

Load your favorite web page with the developer tools open in your browser, and you’ll likely see dozens of API calls happening in the background to render a page that is heavily customized to you as an ...

Get API Security in Action now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

API Security in Action by Neil Madden

1 What is API security?

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly