8 Shift-Left for API Security

Now that we have a deeper understanding of the methods and techniques used by API attackers, it is time to turn our focus to the core topic of defending APIs against attack.

In this opening chapter of Part 3 – Defending APIs, the focus will be on how API security can be improved by following a shift-left approach. The best way to avoid vulnerabilities in your APIs is to avoid introducing them in the first place. Although this sounds easier said than done, there is growing evidence from the software-development industry that addressing security concerns as early as possible in the lifecycle results in reduced risk and costs.

APIs are very well suited to a shift-left approach, since the appeal of a design-first approach ...

Get Defending APIs now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Defending APIs by Colin Domoney

8

Shift-Left for API Security

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly