API Security in Action teaches you how to create secure APIs for any situation. By following this hands-on guide you’ll build a social network API while mastering techniques for flexible multi-user security, cloud key management, and lightweight cryptography.
Summary
A web API is an efficient way to communicate with an application or service. However, this convenience opens your systems to new security risks. API Security in Action gives you the skills to build strong, safe APIs you can confidently expose to the world. Inside, you’ll learn to construct secure and scalable REST APIs, deliver machine-to-machine interaction in a microservices architecture, and provide protection in resource-constrained IoT (Internet of Things) environments.
Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.
About the technology
APIs control data sharing in every service, server, data store, and web client. Modern data-centric designs—including microservices and cloud-native applications—demand a comprehensive, multi-layered approach to security for both private and public-facing APIs.
About the book
API Security in Action teaches you how to create secure APIs for any situation. By following this hands-on guide you’ll build a social network API while mastering techniques for flexible multi-user security, cloud key management, and lightweight cryptography. When you’re done, you’ll be able to create APIs that stand up to complex threat models and hostile environments.
What's inside
Authentication
Authorization
Audit logging
Rate limiting
Encryption
About the reader
For developers with experience building RESTful APIs. Examples are in Java.
About the author
Neil Madden has in-depth knowledge of applied cryptography, application security, and current API security technologies. He holds a Ph.D. in Computer Science.
Table of Contents
PART 1 - FOUNDATIONS
1 What is API security?
2 Secure API development
3 Securing the Natter API
PART 2 - TOKEN-BASED AUTHENTICATION
4 Session cookie authentication
5 Modern token-based authentication
6 Self-contained tokens and JWTs
PART 3 - AUTHORIZATION
7 OAuth2 and OpenID Connect
8 Identity-based access control
9 Capability-based security and macaroons
PART 4 - MICROSERVICE APIs IN KUBERNETES
10 Microservice APIs in Kubernetes
11 Securing service-to-service APIs
PART 5 - APIs FOR THE INTERNET OF THINGS
12 Securing IoT communications
13 Securing IoT APIs
"synopsis" may belong to another edition of this title.
Neil Madden is Security Director at ForgeRock and has an in-depth knowledge of applied cryptography, application security, and current API security technologies. He has worked as a programmer for 20 years and holds a PhD in Computer Science.
"About this title" may belong to another edition of this title.
US$ 3.75 shipping within U.S.A.
Destination, rates & speedsSeller: HPB-Emerald, Dallas, TX, U.S.A.
paperback. Condition: Very Good. Connecting readers with great books since 1972! Used books may not include companion materials, and may have some shelf wear or limited writing. We ship orders daily and Customer Service is our top priority! Seller Inventory # S_437802762
Quantity: 1 available
Seller: HPB-Red, Dallas, TX, U.S.A.
Paperback. Condition: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Seller Inventory # S_424144832
Quantity: 1 available
Seller: Goodwill Books, Hillsboro, OR, U.S.A.
Condition: Good. Signs of wear and consistent use. Seller Inventory # 3IIT4Q000PI0_ns
Quantity: 1 available
Seller: WorldofBooks, Goring-By-Sea, WS, United Kingdom
Paperback. Condition: Very Good. The book has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Seller Inventory # GOR013144268
Quantity: 1 available
Seller: California Books, Miami, FL, U.S.A.
Condition: New. Seller Inventory # I-9781617296024
Quantity: Over 20 available
Seller: Grand Eagle Retail, Fairfield, OH, U.S.A.
Paperback. Condition: new. Paperback. For developers with intermediate Java knowledge and experience building RESTful APIs. API Security in Action shows you how to create secure web APIs that you can confidently share with your business partners and expose for public usage. Security expert Neil Madden takes you under the hood of modern API security concepts, including token-based authentication for flexible multi-user security, bootstrapping a secure environment in a Kubernetes microservices architecture, and using lightweight cryptography to secure an IoT device. Chapter-by-chapter, youll build new layers of security onto a basic social network API, mastering techniques to protect against increasingly complex threat models and hostile environments. When youre done, youll have the practical skills to design and implement APIs that are safe from most common attacks and are ready for the threats of tomorrow. The main API security controls: authentication, authorization, audit logging, rate limiting, and encryption Token-based authentication in web browsers and mobile clients Cloud Key Management Services in a Kubernetes environment Delegated authorization using OAuth 2.0 Shipping may be from multiple locations in the US or from the UK, depending on stock availability. Seller Inventory # 9781617296024
Quantity: 1 available
Seller: PBShop.store UK, Fairford, GLOS, United Kingdom
PAP. Condition: New. New Book. Shipped from UK. Established seller since 2000. Seller Inventory # PB-9781617296024
Quantity: 15 available
Seller: Ria Christie Collections, Uxbridge, United Kingdom
Condition: New. In. Seller Inventory # ria9781617296024_new
Quantity: 3 available
Seller: Kennys Bookshop and Art Galleries Ltd., Galway, GY, Ireland
Condition: New. 2021. 1st Edition. Paperback. . . . . . Seller Inventory # V9781617296024
Quantity: 3 available
Seller: Revaluation Books, Exeter, United Kingdom
Paperback. Condition: Brand New. 553 pages. 9.25x7.50x1.00 inches. In Stock. This item is printed on demand. Seller Inventory # __1617296023
Quantity: 2 available