SlideShare a Scribd company logo

Deliver Digital Signature as a Service

Download as PPTX, PDF
Nordic APIs
Nordic APIs

This is a session given by Henrik Eriksson at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.

Technology
1 of 17
Non-repudiation DSIG, 2016-07-04, Henrik Eriksson Ability to deliver digital signature as a service
Östergötland • Östergötland is the fourth most populous region of Sweden • Approximately 442,000 people call Östergötland their home • The region houses 13 different municipalities
Responsibilities of Region Östergötland • Most of the health care that inhabitants need • Public transport • Promotion of culture, urban development and the private sector
How Region Östergötland is governed • Region Östergötland is a democratically governed organisation • The region's model is client/provider-based • The highest decision making body is the Regional Council consisting of 101 elected officials
The Challenge 5 Must be able to deliver new functionality in order to to be able to digitally sign data! Primarily: • Legal Agreement • Electronic Health Records • Social Care §
• We needed a service that could meet the current and even future demands for use in the mobile world. • The service needed to support use with both legacy systems and modern apps. What did we need? 6
1. First we signed a contract with a partner who offered service for digital signing. 2. Then we changed the system so it could make the necessary API-call to that service. What we did! 7 Done!
Now the problem arose! 8
The problems 9 ?
Next step - Take control over the API 10 API Gateway Production API key Production API key Production API key Unique API key Unique API key Unique API key Management Cost
Design goal 11
Result 12 Swagger Specification API documentation Back-end Front-end
Our responsibility - Our infrastructure Security 13 Availibility Traceability Confidentiality
Documentation with Swagger 14 Swagger RESTful API Documentation Specification http://swagger.io/specification/ + Tools Tool Description Swagger Core Java-related libraries for generating and reading Swagger definitions Swagger Codegen Command-line tool for generating both client and server side code from a Swagger definition Swagger UI Browser based UI for exploring a Swagger defined API Swagger Editor Browser based editor for authoring Swagger definitions in YAML or JSON format
Documentation with Swagger 15 Write API specs in YAML/JSON… …Preview documentation in Swagger
Conclusions 16 Control of security Easy to implement for developers Manageability Lower and predictable costs
Thank you! Henrik Eriksson henrik.eriksson@regionostergotland.se

Recommended

The digitalization of Estonia
The digitalization of EstoniaThe digitalization of Estonia
The digitalization of Estonialegislative yuan
 
Internet Acceptable Use Policy
Internet Acceptable Use PolicyInternet Acceptable Use Policy
Internet Acceptable Use PolicyJennifer Whitt
 
Acceptable use policy
Acceptable use policyAcceptable use policy
Acceptable use policygfair3
 
Acceptable use policies ppt
Acceptable use policies pptAcceptable use policies ppt
Acceptable use policies pptEducatorX
 
Presentation on misrepresentation of jew in the novel Oliver Twist
Presentation on misrepresentation of jew in the novel Oliver TwistPresentation on misrepresentation of jew in the novel Oliver Twist
Presentation on misrepresentation of jew in the novel Oliver Twistjaniriddhi
 
Construction law - Performance of Contract (Sec 37-39)
Construction law - Performance of Contract (Sec 37-39)Construction law - Performance of Contract (Sec 37-39)
Construction law - Performance of Contract (Sec 37-39)SUBHIRAMANIYAM SK (FIV, MRICS,PMP)
 
Direct Misrepresentation
Direct MisrepresentationDirect Misrepresentation
Direct MisrepresentationMary Jane Sta Ana
 
Remedies for breach of contract
Remedies for breach of contractRemedies for breach of contract
Remedies for breach of contractShashank Katiyar
 

Recommended

The digitalization of Estonia
The digitalization of EstoniaThe digitalization of Estonia
The digitalization of Estonialegislative yuan
 
Internet Acceptable Use Policy
Internet Acceptable Use PolicyInternet Acceptable Use Policy
Internet Acceptable Use PolicyJennifer Whitt
 
Acceptable use policy
Acceptable use policyAcceptable use policy
Acceptable use policygfair3
 
Acceptable use policies ppt
Acceptable use policies pptAcceptable use policies ppt
Acceptable use policies pptEducatorX
 
Presentation on misrepresentation of jew in the novel Oliver Twist
Presentation on misrepresentation of jew in the novel Oliver TwistPresentation on misrepresentation of jew in the novel Oliver Twist
Presentation on misrepresentation of jew in the novel Oliver Twistjaniriddhi
 
Construction law - Performance of Contract (Sec 37-39)
Construction law - Performance of Contract (Sec 37-39)Construction law - Performance of Contract (Sec 37-39)
Construction law - Performance of Contract (Sec 37-39)SUBHIRAMANIYAM SK (FIV, MRICS,PMP)
 
Direct Misrepresentation
Direct MisrepresentationDirect Misrepresentation
Direct MisrepresentationMary Jane Sta Ana
 
Remedies for breach of contract
Remedies for breach of contractRemedies for breach of contract
Remedies for breach of contractShashank Katiyar
 
Breach of contract
Breach of contractBreach of contract
Breach of contractIndrajeet Kamble
 
misrepresentation
misrepresentationmisrepresentation
misrepresentationAbi Vigneswaran
 
Presentation on Breach Of Contract
Presentation on Breach Of ContractPresentation on Breach Of Contract
Presentation on Breach Of ContractMuhammad Sharjeel
 
Breach of contract
Breach of contractBreach of contract
Breach of contractRajat Sharma
 
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk UBA-komitet
 
Lecture 11 misrepresentation - cases
Lecture 11 misrepresentation - casesLecture 11 misrepresentation - cases
Lecture 11 misrepresentation - casesRamona Vansluytman
 
Lecture 14 misrepresentations
Lecture 14 misrepresentationsLecture 14 misrepresentations
Lecture 14 misrepresentationsfatima d
 
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...bartoncenter
 
Misrepresentation and fraud
Misrepresentation and fraudMisrepresentation and fraud
Misrepresentation and fraudnishna sathyan
 
Law remedies for breach of contract
Law remedies for breach of contractLaw remedies for breach of contract
Law remedies for breach of contractAdil Shaikh
 
Remedis of breach of contract
Remedis of breach of contractRemedis of breach of contract
Remedis of breach of contractWINNERbd.it
 
Accountability That Works
Accountability That WorksAccountability That Works
Accountability That Worksbob_sutton6174
 
An introduction to open data
An introduction to open dataAn introduction to open data
An introduction to open dataSally Lait
 
ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)Rofidah Azman
 
Breach of Contract & Remedies
Breach of Contract & RemediesBreach of Contract & Remedies
Breach of Contract & RemediesMereia Kali
 
Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)Kavya Rawat
 
Lecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notesLecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notesRamona Vansluytman
 
Free consent
Free consentFree consent
Free consentGurjit
 
The Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and resultsThe Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and resultsTHL
 
Technology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer MarieTechnology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer MarieOECD Governance
 
Eva Eilstrup
Eva EilstrupEva Eilstrup
Eva EilstrupTecnimap
 
Estado Futuro: Lousise Kampmann
Estado Futuro: Lousise KampmannEstado Futuro: Lousise Kampmann
Estado Futuro: Lousise KampmannLaboratorio de Gobierno
 

More Related Content

Viewers also liked

Presentation on Breach Of Contract
Presentation on Breach Of ContractPresentation on Breach Of Contract
Presentation on Breach Of ContractMuhammad Sharjeel
 
Breach of contract
Breach of contractBreach of contract
Breach of contractRajat Sharma
 
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk UBA-komitet
 
Lecture 11 misrepresentation - cases
Lecture 11 misrepresentation - casesLecture 11 misrepresentation - cases
Lecture 11 misrepresentation - casesRamona Vansluytman
 
Lecture 14 misrepresentations
Lecture 14 misrepresentationsLecture 14 misrepresentations
Lecture 14 misrepresentationsfatima d
 
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...bartoncenter
 
Misrepresentation and fraud
Misrepresentation and fraudMisrepresentation and fraud
Misrepresentation and fraudnishna sathyan
 
Law remedies for breach of contract
Law remedies for breach of contractLaw remedies for breach of contract
Law remedies for breach of contractAdil Shaikh
 
Remedis of breach of contract
Remedis of breach of contractRemedis of breach of contract
Remedis of breach of contractWINNERbd.it
 
Accountability That Works
Accountability That WorksAccountability That Works
Accountability That Worksbob_sutton6174
 
An introduction to open data
An introduction to open dataAn introduction to open data
An introduction to open dataSally Lait
 
ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)Rofidah Azman
 
Breach of Contract & Remedies
Breach of Contract & RemediesBreach of Contract & Remedies
Breach of Contract & RemediesMereia Kali
 
Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)Kavya Rawat
 
Lecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notesLecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notesRamona Vansluytman
 
Free consent
Free consentFree consent
Free consentGurjit
 

Viewers also liked (18)

Breach of contract
Breach of contractBreach of contract
Breach of contract
 
misrepresentation
misrepresentationmisrepresentation
misrepresentation
 
Presentation on Breach Of Contract
Presentation on Breach Of ContractPresentation on Breach Of Contract
Presentation on Breach Of Contract
 
Breach of contract
Breach of contractBreach of contract
Breach of contract
 
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
Contracts & Common Law: Breach Remedies & Claims Defence - Natalia Perestyuk
 
Lecture 11 misrepresentation - cases
Lecture 11 misrepresentation - casesLecture 11 misrepresentation - cases
Lecture 11 misrepresentation - cases
 
Lecture 14 misrepresentations
Lecture 14 misrepresentationsLecture 14 misrepresentations
Lecture 14 misrepresentations
 
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
Confidentiality, Transparency, and Accountability: A Delicate Balance in Chil...
 
Misrepresentation and fraud
Misrepresentation and fraudMisrepresentation and fraud
Misrepresentation and fraud
 
Law remedies for breach of contract
Law remedies for breach of contractLaw remedies for breach of contract
Law remedies for breach of contract
 
Remedis of breach of contract
Remedis of breach of contractRemedis of breach of contract
Remedis of breach of contract
 
Accountability That Works
Accountability That WorksAccountability That Works
Accountability That Works
 
An introduction to open data
An introduction to open dataAn introduction to open data
An introduction to open data
 
ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)ASSIGNMENT: Business Law (example of answer)
ASSIGNMENT: Business Law (example of answer)
 
Breach of Contract & Remedies
Breach of Contract & RemediesBreach of Contract & Remedies
Breach of Contract & Remedies
 
Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)Remedies Of Breach of contract(law)
Remedies Of Breach of contract(law)
 
Lecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notesLecture 11 misrepresentation - notes
Lecture 11 misrepresentation - notes
 
Free consent
Free consentFree consent
Free consent
 

Similar to Deliver Digital Signature as a Service

The Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and resultsThe Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and resultsTHL
 
Technology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer MarieTechnology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer MarieOECD Governance
 
Eva Eilstrup
Eva EilstrupEva Eilstrup
Eva EilstrupTecnimap
 
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...IKT-Norge
 
An Introduction to Social Services in Finland
An Introduction to Social Services in FinlandAn Introduction to Social Services in Finland
An Introduction to Social Services in FinlandCitizen Network
 
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...Digital Health in Context - Insights from Denmark, USA, China, South Korea an...
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...Till Winkler
 
Onlinet Case Study - Guldborgsund - ENG
Onlinet Case Study - Guldborgsund - ENGOnlinet Case Study - Guldborgsund - ENG
Onlinet Case Study - Guldborgsund - ENGONLINET Group
 
E-government eIDAS - June 2016
E-government eIDAS - June 2016E-government eIDAS - June 2016
E-government eIDAS - June 2016Link to WhatsApp
 
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14Thearkvalais
 
DWS16 - Plenary - Game changers: trust will change our future everyday life -...
DWS16 - Plenary - Game changers: trust will change our future everyday life -...DWS16 - Plenary - Game changers: trust will change our future everyday life -...
DWS16 - Plenary - Game changers: trust will change our future everyday life -...IDATE DigiWorld
 
Mine pasientreiser Success story - How Patient Travels delivered patient port...
Mine pasientreiser Success story - How Patient Travels delivered patient port...Mine pasientreiser Success story - How Patient Travels delivered patient port...
Mine pasientreiser Success story - How Patient Travels delivered patient port...Alen Leit
 
Victim Support Scotland
Victim Support ScotlandVictim Support Scotland
Victim Support ScotlandUNDPhr
 
Suecia: Giving citizens the right means to contribute to the society – reflec...
Suecia: Giving citizens the right means to contribute to the society – reflec...Suecia: Giving citizens the right means to contribute to the society – reflec...
Suecia: Giving citizens the right means to contribute to the society – reflec...EUROsociAL II
 
Nina græger. the duty of care, protecting citizens abroad.
Nina græger. the duty of care, protecting citizens abroad.Nina græger. the duty of care, protecting citizens abroad.
Nina græger. the duty of care, protecting citizens abroad.NordForsk
 
Making transparency work for you 2014
Making transparency work for you 2014Making transparency work for you 2014
Making transparency work for you 2014Common Futures
 

Similar to Deliver Digital Signature as a Service (20)

The Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and resultsThe Norwegian telecare and telehealth program. Experiences and results
The Norwegian telecare and telehealth program. Experiences and results
 
Technology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer MarieTechnology for Courts in Singapour - Jennifer Marie
Technology for Courts in Singapour - Jennifer Marie
 
Eva Eilstrup
Eva EilstrupEva Eilstrup
Eva Eilstrup
 
Estado Futuro: Lousise Kampmann
Estado Futuro: Lousise KampmannEstado Futuro: Lousise Kampmann
Estado Futuro: Lousise Kampmann
 
Cómo promover la innovación en el sector público
Cómo promover la innovación en el sector público Cómo promover la innovación en el sector público
Cómo promover la innovación en el sector público
 
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...
2C Salo From Health and Social Care Reform and Standardization to Ecosystem E...
 
An Introduction to Social Services in Finland
An Introduction to Social Services in FinlandAn Introduction to Social Services in Finland
An Introduction to Social Services in Finland
 
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...Digital Health in Context - Insights from Denmark, USA, China, South Korea an...
Digital Health in Context - Insights from Denmark, USA, China, South Korea an...
 
Infoland and the Norwegian land registry model | July 2014
Infoland and the Norwegian land registry model | July 2014Infoland and the Norwegian land registry model | July 2014
Infoland and the Norwegian land registry model | July 2014
 
Onlinet Case Study - Guldborgsund - ENG
Onlinet Case Study - Guldborgsund - ENGOnlinet Case Study - Guldborgsund - ENG
Onlinet Case Study - Guldborgsund - ENG
 
E-government eIDAS - June 2016
E-government eIDAS - June 2016E-government eIDAS - June 2016
E-government eIDAS - June 2016
 
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14
Jonas Ekström - E-health strategies and solutions in Sweden - e-health 6.6.14
 
DWS16 - Plenary - Game changers: trust will change our future everyday life -...
DWS16 - Plenary - Game changers: trust will change our future everyday life -...DWS16 - Plenary - Game changers: trust will change our future everyday life -...
DWS16 - Plenary - Game changers: trust will change our future everyday life -...
 
Mine pasientreiser Success story - How Patient Travels delivered patient port...
Mine pasientreiser Success story - How Patient Travels delivered patient port...Mine pasientreiser Success story - How Patient Travels delivered patient port...
Mine pasientreiser Success story - How Patient Travels delivered patient port...
 
Agneta granström
Agneta granströmAgneta granström
Agneta granström
 
Victim Support Scotland
Victim Support ScotlandVictim Support Scotland
Victim Support Scotland
 
Suecia: Giving citizens the right means to contribute to the society – reflec...
Suecia: Giving citizens the right means to contribute to the society – reflec...Suecia: Giving citizens the right means to contribute to the society – reflec...
Suecia: Giving citizens the right means to contribute to the society – reflec...
 
Healthcare Transformation and Integrated Care in Denmark
Healthcare Transformation and Integrated Care in DenmarkHealthcare Transformation and Integrated Care in Denmark
Healthcare Transformation and Integrated Care in Denmark
 
Nina græger. the duty of care, protecting citizens abroad.
Nina græger. the duty of care, protecting citizens abroad.Nina græger. the duty of care, protecting citizens abroad.
Nina græger. the duty of care, protecting citizens abroad.
 
Making transparency work for you 2014
Making transparency work for you 2014Making transparency work for you 2014
Making transparency work for you 2014
 

More from Nordic APIs

How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...
How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...
How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...Nordic APIs
 
The Art of API Design, by David Biesack at Apiture
The Art of API Design, by David Biesack at ApitureThe Art of API Design, by David Biesack at Apiture
The Art of API Design, by David Biesack at ApitureNordic APIs
 
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...Nordic APIs
 
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...Nordic APIs
 
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...Nordic APIs
 
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNL
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNLAPI Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNL
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNLNordic APIs
 
API Discovery from Crawl to Run - Rob Dickinson, Graylog
API Discovery from Crawl to Run - Rob Dickinson, GraylogAPI Discovery from Crawl to Run - Rob Dickinson, Graylog
API Discovery from Crawl to Run - Rob Dickinson, GraylogNordic APIs
 
Productizing and Monetizing APIs - Derric Gilling, Moseif
Productizing and Monetizing APIs - Derric Gilling, MoseifProductizing and Monetizing APIs - Derric Gilling, Moseif
Productizing and Monetizing APIs - Derric Gilling, MoseifNordic APIs
 
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Sipios
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, SipiosSecurely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Sipios
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, SipiosNordic APIs
 
Security of LLM APIs by Ankita Gupta, Akto.io
Security of LLM APIs by Ankita Gupta, Akto.ioSecurity of LLM APIs by Ankita Gupta, Akto.io
Security of LLM APIs by Ankita Gupta, Akto.ioNordic APIs
 
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...Nordic APIs
 
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...Nordic APIs
 
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...Reigniting the API Description Wars with TypeSpec and the Next Generation of ...
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...Nordic APIs
 
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAny
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAnyEstablish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAny
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAnyNordic APIs
 
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...Nordic APIs
 
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIs
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIsGoing Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIs
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIsNordic APIs
 
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...Nordic APIs
 
GenAI: Producing and Consuming APIs by Paul Dumas, Gartner
GenAI: Producing and Consuming APIs by Paul Dumas, GartnerGenAI: Producing and Consuming APIs by Paul Dumas, Gartner
GenAI: Producing and Consuming APIs by Paul Dumas, GartnerNordic APIs
 
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...Nordic APIs
 
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...Nordic APIs
 

More from Nordic APIs (20)

How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...
How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...
How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...
 
The Art of API Design, by David Biesack at Apiture
The Art of API Design, by David Biesack at ApitureThe Art of API Design, by David Biesack at Apiture
The Art of API Design, by David Biesack at Apiture
 
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...
 
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...
 
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...
 
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNL
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNLAPI Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNL
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNL
 
API Discovery from Crawl to Run - Rob Dickinson, Graylog
API Discovery from Crawl to Run - Rob Dickinson, GraylogAPI Discovery from Crawl to Run - Rob Dickinson, Graylog
API Discovery from Crawl to Run - Rob Dickinson, Graylog
 
Productizing and Monetizing APIs - Derric Gilling, Moseif
Productizing and Monetizing APIs - Derric Gilling, MoseifProductizing and Monetizing APIs - Derric Gilling, Moseif
Productizing and Monetizing APIs - Derric Gilling, Moseif
 
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Sipios
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, SipiosSecurely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Sipios
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Sipios
 
Security of LLM APIs by Ankita Gupta, Akto.io
Security of LLM APIs by Ankita Gupta, Akto.ioSecurity of LLM APIs by Ankita Gupta, Akto.io
Security of LLM APIs by Ankita Gupta, Akto.io
 
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...
 
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...
 
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...Reigniting the API Description Wars with TypeSpec and the Next Generation of ...
Reigniting the API Description Wars with TypeSpec and the Next Generation of ...
 
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAny
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAnyEstablish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAny
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAny
 
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...
 
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIs
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIsGoing Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIs
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIs
 
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...
 
GenAI: Producing and Consuming APIs by Paul Dumas, Gartner
GenAI: Producing and Consuming APIs by Paul Dumas, GartnerGenAI: Producing and Consuming APIs by Paul Dumas, Gartner
GenAI: Producing and Consuming APIs by Paul Dumas, Gartner
 
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...
The SAS developer portal – developer.sas.com 2.0: How we built it by Joe Furb...
 
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...
 

Recently uploaded

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsAndrey Dotsenko
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfngoud9212
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraDeakin University
 
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Neo4j
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 

Recently uploaded (20)

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdf
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning era
 
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 

Deliver Digital Signature as a Service

Editor's Notes

  1. We had no ability to trace anything. Couldn´t measure performance, either current nor over time. Manage cost became problematic when a second system connects to the service. Not able to see the trend of usage niether over the day or night And for security reasons we didnt want the system owner to have the knowledge of the production api keys.
  2. Connect it through API Gateway so we can be able to: Trace everything. Measure the performance, current and over time. Manage the cost so the system owner pays for the right amount of signing activities. Able to see the trend of usage over day and night For security reasons we didn´t give out the knowledge of the production api keys, we gave out new unique keys for each system.
  3. We used swagger specification to deliver documentation for our API, Which made it easy for developers to adapt their software for use of the service. Backend API keys and connectivity all managed by our infrastructure. So when a changed needs to be implemented we give out a new version and make the change in onAbstractione place and because we know who the consumers are we can easily inform the ongoing/upcoming change before any problem arise.
  4. By designing the api in our infrastructure we can maintian control, By able to take responibilities over all security aspects, such as availability tracability and confidentiality.
  5. We used swagger specification to deliver documentation for our API, Which made it easy for developers to adapt their software for use of the service.
  6. We used swagger specification to deliver documentation for our API, Which made it easy for developers to adapt their software for use of the service.
  7. By designing the api in our infrastructure we can maintian control, By able to take responibilities over all security aspects, such as availability tracability and confidentiality. We used swagger specification to deliver documentation for our API, Which made it easy for developers to adapt their software for use of the service. Backend API keys and connectivity all managed by our infrastructure. So when a change needs to be implemented we give out a new version and make the change in one place and because we know who the consumers are we can easily inform the ongoing/upcoming change before any problem arise.