apidays LIVE Australia 2020 - Building Business Ecosystems
Evaluating the usability of security APIs
Dr Nalin Asanka Gamagedara Arachchilage, Senior Research Fellow in Cyber Security (DevOpsSec) at La Trobe University
apidays LIVE Australia 2020 - Contract-first API development with Spot by Fra...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Contract-first API development with Spot
Francois Wout, Developer Happiness Engineer at Airtasker
apidays LIVE Australia 2020 - Building a scalable API platform for an IoT eco...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Building a scalable API platform for an IoT ecosystem
Pooja Subramanian, Lead Consultant at ThoughtWorks & Archanaa Ravikumar, Lead Engineer at BCG Digital Ventures
What is developer experience? And how can it affect the success of your product? Our very own Keshav Vasudevan will take you through everything you need to know.
apidays LIVE LONDON - Discovering API Version differences with ease by Jaap B...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Discovering API Version differences with ease
Jaap Brasser, Developer Advocate at Rubrik
apidays LIVE Australia 2020 - Data with a Mission by Matt McLarty apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Data with a Mission: A COVID-19 API Case Study
Matt McLarty, Global Leader, API Strategy & Sanjna Verma, Product Manager at MuleSoft
apidays LIVE Australia 2020 - The Evolution of APIs: Events and the AsyncAPI ...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
The Evolution of APIs: Events and the AsyncAPI specification
Aaron Lee, Developer Advocate, CTO Team at Solace
apidays LIVE New York 2021 - API Security & AI by Deb Roy, Accentureapidays
apidays LIVE New York 2021 - API-driven Regulations for Finance, Insurance, and Healthcare
July 28 & 29, 2021
API Security & AI
Deb Roy, Senior Manager API Practice at Accenture
apidays LIVE Australia 2020 - Contract-first API development with Spot by Fra...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Contract-first API development with Spot
Francois Wout, Developer Happiness Engineer at Airtasker
apidays LIVE Australia 2020 - Building a scalable API platform for an IoT eco...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Building a scalable API platform for an IoT ecosystem
Pooja Subramanian, Lead Consultant at ThoughtWorks & Archanaa Ravikumar, Lead Engineer at BCG Digital Ventures
What is developer experience? And how can it affect the success of your product? Our very own Keshav Vasudevan will take you through everything you need to know.
apidays LIVE LONDON - Discovering API Version differences with ease by Jaap B...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Discovering API Version differences with ease
Jaap Brasser, Developer Advocate at Rubrik
apidays LIVE Australia 2020 - Data with a Mission by Matt McLarty apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
Data with a Mission: A COVID-19 API Case Study
Matt McLarty, Global Leader, API Strategy & Sanjna Verma, Product Manager at MuleSoft
apidays LIVE Australia 2020 - The Evolution of APIs: Events and the AsyncAPI ...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
The Evolution of APIs: Events and the AsyncAPI specification
Aaron Lee, Developer Advocate, CTO Team at Solace
apidays LIVE New York 2021 - API Security & AI by Deb Roy, Accentureapidays
apidays LIVE New York 2021 - API-driven Regulations for Finance, Insurance, and Healthcare
July 28 & 29, 2021
API Security & AI
Deb Roy, Senior Manager API Practice at Accenture
apidays LIVE Hong Kong 2021 - Event-driven APIs & Schema governance for Apach...apidays
apidays LIVE Hong Kong 2021 - API Ecosystem & Data Interchange
August 25 & 26, 2021
Event-driven APIs & Schema governance for Apache Kafka
Hugo Guerrero, APIs & Messaging Developer Advocate at Red Hat
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Contract {Collaboration} Driven Development - APIdays Interface 2020Alianna Inzana
In the API space, much of the conversation around Contract Driven Development has centered on the question “Did we build the API right?“. By using the contract as the foundation for a common understanding of the API, we can answer not only that question, but the equally important - but more elusive - “Did we build the right API?“.
In /Contract/{Collaboration}/DrivenDevelopment, we will discuss how API Specifications and consumer-driven contracts can form the basis for cross-team collaboration in delivering quality services.
apidays LIVE Australia 2021 - From apps to APIs: how no-code is transforming ...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
From apps to APIs: how no-code is transforming the tech industry
Carmen Chung, Senior Product Manager at Linktree
INTERFACE, by apidays - Building contextualized API specifications by Boris ...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
Building contextualized API specifications
Boris Vernoff, Chief Achitect at ADP
apidays LIVE Paris - Potential of API integrations, common traps and advices ...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Potential of API integrations, common traps and advices
Mathieu Rasse, CEO at Meta API
apidays LIVE Paris 2021 - Addressing OWASP API Security Top 10 by Isabelle Ma...apidays
pidays LIVE Paris 2021 - APIs and the Future of Software
December 7, 8 & 9, 2021
Addressing OWASP API Security Top 10 starts at design time
Isabelle Mauny, Field CTO & Co-Founder at 42Crunch
apidays LIVE Australia 2020 - API Design in Fintech: Challenges and Opportuni...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
API Design in Fintech: Challenges and Opportunities for next gen APIs
Jeremy Glassenberg, Director of Product, APIs at Deserve
apidays LIVE New York 2021 - Top 10 API security threats every API team shoul...apidays
apidays LIVE New York 2021 - API-driven Regulations for Finance, Insurance, and Healthcare
July 28 & 29, 2021
Top 10 API security threats every API team should know
Derric Gilling, CEO at Moesif
apidays LIVE Hong Kong 2021 - Multi-Protocol APIs at Scale in Adidas by Jesus...apidays
apidays LIVE Hong Kong 2021 - API Ecosystem & Data Interchange
August 25 & 26, 2021
Multi-Protocol APIs at Scale in Adidas
Jesus de Diego, API Evangelist at Adidas
apidays LIVE Paris 2021 - API Attack Simulator - Find your API vulnerabilitie...apidays
apidays LIVE Paris 2021 - APIs and the Future of Software
December 7, 8 & 9, 2021
API Attack Simulator - Find your API vulnerabilities first
Sella Rafaeli, Full-Stack Web Developer at WIB
apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...apidays
apidays LIVE India 2021 - Connecting 1.3 billion digital innovators
May 20, 2021
10 steps to secure your API
Pabitra Kumar Sahoo, Co-founder & CTO at Qualysec Technologies
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...apidays
apidays LIVE Singapore 2021 - Digitisation, Connected Services and Embedded Finance
April 21 & 22, 2021
What financial services can learn from Marketplaces & Ecosystem Platforms in other industries
Pavan Keshavamurthy, Founder at OpenDevX.io
apidays LIVE Paris - Succeeding with API Programs by Kiran Nadgirapidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Succeeding with API Programs
Kiran Nadgir, Head of APIs and UX Platforms at Silicon Valley Bank
INTERFACE, by apidays - Playing with FHIR: Hacking FHIR and mHealth APIs by ...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
Playing with FHIR: Hacking FHIR and mHealth APIs
Alissa Knight, Hacker and Partner at Knight
Pure APIs: Development workflows for successful API integrationsJosé Haro Peralta
APIs are the fundamental tenets of the Internet. They enable integrations between different services, and they power the servers that bring our applications to life. API integrations lay at the core of our API-driven world, and delivering successful API integrations is fundamental to sustain it. However, more often than not, API integrations tend to fail due to ineffective development workflows. In this presentation, I want to present various API development workflows that have helped me and my clients deliver successful API integrations. I’ll show how documentation-driven development, using mock servers, robust API testing frameworks, and API visibility tools can help to significantly reduce the chances of API integration failure and to keep errors under control.
WATCH WEBINAR: https://youtu.be/LLVOouA4pbs
Over the past 6 months, we have discovered many similarities across APIs from companies from very different industries. "This is an eye opener" is the most recurring comment from our prospects. We thought it would be worth sharing our findings in this webinar.
Through a mix of slides and demos, we will describe the top 5 issues our security audit reports, what they are and why they matter, including:
- Potentials attacks linked to each issue
- How they can be remediated
- Example request/response and reports
Why Johnny Can't Store Passwords Securely? A Usability Evaluation of Bouncyca...Chamila Wijayarathna
Slides I used to present our paper "Why Johnny Can't Store Passwords Securely? " at Evaluation and Assessment in Software Engineering (EASE) 2018 Conference. The full paper can be accessed at https://arxiv.org/ftp/arxiv/papers/1805/1805.09487.pdf
apidays LIVE Hong Kong 2021 - Event-driven APIs & Schema governance for Apach...apidays
apidays LIVE Hong Kong 2021 - API Ecosystem & Data Interchange
August 25 & 26, 2021
Event-driven APIs & Schema governance for Apache Kafka
Hugo Guerrero, APIs & Messaging Developer Advocate at Red Hat
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Contract {Collaboration} Driven Development - APIdays Interface 2020Alianna Inzana
In the API space, much of the conversation around Contract Driven Development has centered on the question “Did we build the API right?“. By using the contract as the foundation for a common understanding of the API, we can answer not only that question, but the equally important - but more elusive - “Did we build the right API?“.
In /Contract/{Collaboration}/DrivenDevelopment, we will discuss how API Specifications and consumer-driven contracts can form the basis for cross-team collaboration in delivering quality services.
apidays LIVE Australia 2021 - From apps to APIs: how no-code is transforming ...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
From apps to APIs: how no-code is transforming the tech industry
Carmen Chung, Senior Product Manager at Linktree
INTERFACE, by apidays - Building contextualized API specifications by Boris ...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
Building contextualized API specifications
Boris Vernoff, Chief Achitect at ADP
apidays LIVE Paris - Potential of API integrations, common traps and advices ...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Potential of API integrations, common traps and advices
Mathieu Rasse, CEO at Meta API
apidays LIVE Paris 2021 - Addressing OWASP API Security Top 10 by Isabelle Ma...apidays
pidays LIVE Paris 2021 - APIs and the Future of Software
December 7, 8 & 9, 2021
Addressing OWASP API Security Top 10 starts at design time
Isabelle Mauny, Field CTO & Co-Founder at 42Crunch
apidays LIVE Australia 2020 - API Design in Fintech: Challenges and Opportuni...apidays
apidays LIVE Australia 2020 - Building Business Ecosystems
API Design in Fintech: Challenges and Opportunities for next gen APIs
Jeremy Glassenberg, Director of Product, APIs at Deserve
apidays LIVE New York 2021 - Top 10 API security threats every API team shoul...apidays
apidays LIVE New York 2021 - API-driven Regulations for Finance, Insurance, and Healthcare
July 28 & 29, 2021
Top 10 API security threats every API team should know
Derric Gilling, CEO at Moesif
apidays LIVE Hong Kong 2021 - Multi-Protocol APIs at Scale in Adidas by Jesus...apidays
apidays LIVE Hong Kong 2021 - API Ecosystem & Data Interchange
August 25 & 26, 2021
Multi-Protocol APIs at Scale in Adidas
Jesus de Diego, API Evangelist at Adidas
apidays LIVE Paris 2021 - API Attack Simulator - Find your API vulnerabilitie...apidays
apidays LIVE Paris 2021 - APIs and the Future of Software
December 7, 8 & 9, 2021
API Attack Simulator - Find your API vulnerabilities first
Sella Rafaeli, Full-Stack Web Developer at WIB
apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...apidays
apidays LIVE India 2021 - Connecting 1.3 billion digital innovators
May 20, 2021
10 steps to secure your API
Pabitra Kumar Sahoo, Co-founder & CTO at Qualysec Technologies
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...apidays
apidays LIVE Singapore 2021 - Digitisation, Connected Services and Embedded Finance
April 21 & 22, 2021
What financial services can learn from Marketplaces & Ecosystem Platforms in other industries
Pavan Keshavamurthy, Founder at OpenDevX.io
apidays LIVE Paris - Succeeding with API Programs by Kiran Nadgirapidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Succeeding with API Programs
Kiran Nadgir, Head of APIs and UX Platforms at Silicon Valley Bank
INTERFACE, by apidays - Playing with FHIR: Hacking FHIR and mHealth APIs by ...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
Playing with FHIR: Hacking FHIR and mHealth APIs
Alissa Knight, Hacker and Partner at Knight
Pure APIs: Development workflows for successful API integrationsJosé Haro Peralta
APIs are the fundamental tenets of the Internet. They enable integrations between different services, and they power the servers that bring our applications to life. API integrations lay at the core of our API-driven world, and delivering successful API integrations is fundamental to sustain it. However, more often than not, API integrations tend to fail due to ineffective development workflows. In this presentation, I want to present various API development workflows that have helped me and my clients deliver successful API integrations. I’ll show how documentation-driven development, using mock servers, robust API testing frameworks, and API visibility tools can help to significantly reduce the chances of API integration failure and to keep errors under control.
WATCH WEBINAR: https://youtu.be/LLVOouA4pbs
Over the past 6 months, we have discovered many similarities across APIs from companies from very different industries. "This is an eye opener" is the most recurring comment from our prospects. We thought it would be worth sharing our findings in this webinar.
Through a mix of slides and demos, we will describe the top 5 issues our security audit reports, what they are and why they matter, including:
- Potentials attacks linked to each issue
- How they can be remediated
- Example request/response and reports
Why Johnny Can't Store Passwords Securely? A Usability Evaluation of Bouncyca...Chamila Wijayarathna
Slides I used to present our paper "Why Johnny Can't Store Passwords Securely? " at Evaluation and Assessment in Software Engineering (EASE) 2018 Conference. The full paper can be accessed at https://arxiv.org/ftp/arxiv/papers/1805/1805.09487.pdf
Pactera Technologies North America (NA) Cybersecurity Consulting Services specializes in Cybersecurity Program Development, Application Vulnerability Assessment, Application Security Governance, Secure SDLC, Secure Coding Practice Training, and Third-party supplier security risk management and assessment. We only hire top security consultants that are most qualified for this job. We love to prove ourselves to you!
Discover how to build APIs using the Apigee API Services toolkit. Deep dive into Apigee's API Serives solution, API design and management technology including OAuth and security, persistence & caching, Node.js and more.
Learn about security architecture, security patterns for app and API access control, and best practices for threat management, data security, identity and compliance including:
- how to approach API security for your API program?
- the API security pillars - threat protection, data security and identity
- best practices for integrating identity services into API management
- how to meet compliance requirements for API products
Bringing Security Testing to Development: How to Enable Developers to Act as ...Achim D. Brucker
Security testing is an important part of any security development life-cycle (SDLC) and, thus, should be a part of any software development life-cycle.
We will present SAP's Security Testing Strategy that enables developers to find security vulnerabilities early by applying a variety of different security testing methods and tools. We explain the motivation behind it, how we enable global development teams to implement the strategy, across different SDLCs and report on our experiences.
APIsecure - April 6 & 7, 2022
APIsecure is the world’s first conference dedicated to API threat management; bringing together breakers, defenders, and solutions in API security.
The Real World, API Security Edition: When best practices stop being polite and start being real
Sean Boulter, Principal Security Engineer at Salt Security
React commonest security flaws and remedial measures!Shelly Megan
React development firms must be aware of the probable security loopholes faced during the React app development process. This blog is an attempt to describe various security issues in the React ecosystem along with the remedial measures to be taken in order to ensure an impeccable end-product.
Pain Points In API Development? They’re EverywhereNordic APIs
There’s an inherent tension for organizations doing API development: how to keep both your API developers as well as your infrastructure happy, at the same time. Decoupling front-end and back-end development allows parallel development, and helps keep your front-end, middle-end, and back-end efforts working asynchronously. This speeds progress, but requires far more – and far better – collaboration to be successful. Even an independent developer working with APIs requires good collaboration tools.
In this talk, Abhinav Asthana will provide tips on how to improve in API development using collaboration tools like executable API descriptions, API mock servers, and documentation. He will include specific examples of how companies (such as VMware, Coursera, and AMC Theatres) have used collaboration to attain more agile development, to onboard developers, and to ensure input from all participants/stakeholders.
Quality of software code for a given product shipped effectively translates not only to its functional quality but as well to its non functional aspects say security. Many of the issues in code can be addressed much before they reach SCM.
INTERFACE by apidays 2023 - Something Old, Something New, Colin Domoney, 42Cr...apidays
INTERFACE by apidays 2023
APIs for a “Smart” economy. Embedding AI to deliver Smart APIs and turn into an exponential organization
June 28 & 29, 2023
https://www.apidays.global/interface/
Something Old, Something New - OWASP API Security Top 10 in 2023
Colin Domoney, CTO at 42Crunch
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
APIs are a key part of modern web applications and a growing security challenge that isn’t well understood by developers and application security managers, leading to exposed APIs that give hackers access to sensitive data. Find out how to secure your APIs and prevent vulnerabilities from making it into production.
Programming languages and techniques for today’s embedded andIoT worldRogue Wave Software
This presentation looks at the problem of selecting the best programming language and tools to ensure IoT software is secure, robust, and safe. By taking a look at industry best practices and decades of knowledge from other industries (such as automotive and aerospace), you will learn the criteria necessary to choose the right language, how to overcome gaps in developers’ skills, and techniques to ensure your team delivers bulletproof IoT applications.
apidays LIVE Paris 2021 - The Real World, API Security Edition by Michael Isb...apidays
apidays LIVE Paris 2021 - APIs and the Future of Software
December 7, 8 & 9, 2021
The Real World, API Security Edition: When best practices stop being polite and start being real
Michael Isbitski, Technical Evangelist at Salt Security
Bridging the Security Testing Gap in Your CI/CD PipelineDevOps.com
Are you struggling with application security testing? Do you wish it was easier, faster, and better? Join us to learn more about IAST, a next-generation application security tool that provides highly accurate, real-time vulnerability results without the need for application or source code scans. Learn how this nondisruptive tool can:
Run in the background and report vulnerabilities during functional testing, CI/CD, and QA activities.
Auto verify, prioritize and triage vulnerability findings in real time with 100% confidence.
Fully automate secure app delivery and deployment, without the need for extra security scans or processes.
Free up DevOps resources to focus on strategic or mission-critical tasks and contributions.
Any new digital service being built today also needs to be exposed as an API. This is the core of agile, successful digital businesses. It forces digital organizations to create new APIs while consuming many other APIs in the process, effectively being part of the global API supply chain.
However, many API strategies fail, mostly due to underestimating the full lifecycle of APIs from conceptualization to engineering to production and evolution. Getting optimal ROI from APIs requires understanding the nuances of building APIs and finding the right balance between what you build and reuse. This slide deck discusses:
• How we develop APIs today and commonly noticed problems
• The different types of APIs in an organization and their nuances
• 5 key elements for developing enterprise-grade APIs for the enterprise
• The safest bet for a successful API strategy
We also explore Choreo, an integration Platform as a Service for API developers: https://wso2.com/choreo
Comprehensive Guide on API Automation TestingExpeed Software
Unlock the power of API automation testing with our comprehensive guide. Dive into the world of automated testingz methodologies and discover how to streamline your API testing processes for improved efficiency and reliability. Our expert insights and practical tips cover everything from test planning and execution to reporting and analysis. Whether you're a seasoned QA professional or just getting started, this publication is your ultimate resource for mastering API automation testing. Explore cutting-edge techniques, best practices, and real-world case studies to elevate your testing strategy and drive better outcomes. Don't miss out on this essential resource for staying ahead in today's rapidly evolving software landscape. Brought to you by Expeed Software. Visit our website to learn more.
Apidays Helsinki 2024 - APIs ahoy, the case of Customer Booking APIs in Finn...apidays
Keynote 1: APIs ahoy, the case of Customer Booking APIs in Finnlines and Grimaldi Lines, ShortSea
Vesa Vähämaa, Head of Group IT, Software at Finnlines Plc
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - From Chaos to Calm- Navigating Emerging API Security...apidays
From Chaos to Calm: Navigating Emerging API Security Challenges
Eli Arkush, Principal Solutions Engineer, API Security at Akamai
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - What is next now that your organization created a (si...apidays
What is next now that your organization created a (significant) set of APIs?
Rogier van Boxtel, Director, Pre Sales Consulting - Axway
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - There’s no AI without API, but what does this mean fo...apidays
There’s no AI without API, but what does this mean for Security?
Timo Rüppell, VP of Product - FireTail.io
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - Sustainable IT and API Performance - How to Bring The...apidays
Sustainable IT and API Performance - How to Bring Them Together
Merja Kajava, Founder - Aavista Oy
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - Security Vulnerabilities in your APIs by Lukáš Ďurovs...apidays
Security Vulnerabilities in your APIs
Lukáš Ďurovský, Staff Software Engineer at Thermo Fisher Scientific
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - Data, API’s and Banks, with AI on top by Sergio Giral...apidays
Data, API’s and Banks, with AI on top
Sergio Giraldo, IT Lead - ING
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - Data Ecosystems Driving the Green Transition by Olli ...apidays
Data Ecosystems Driving the Green Transition
Olli Kilpeläinen, VP - Data Platform & Ecosystem at Betolar
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - Bridging the Gap Between Backend and Frontend API Tes...apidays
Bridging the Gap Between Backend and Frontend API Testing with K6
Ayush Goyal, Senior Software Engineer - Grafana Labs
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - API Compliance by Design by Marjukka Niinioja, Osaangoapidays
API Compliance by Design
Marjukka Niinioja, APItalista & Founding Partner - Osaango
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays Helsinki 2024 - ABLOY goes API economy – Transformation story by Hann...apidays
ABLOY goes API economy – Transformation story
Hanna Sillanpää Head of Digital Solutions PU - Abloy
Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - The subtle art of API rate limiting by Josh Twist, Zuploapidays
The subtle art of API rate limiting
Josh Twist, Co-founder & CEO at Zuplo
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - RESTful API Patterns and Practices by Mike Amundsen, ...apidays
ESTful API Patterns and Practices
Mike Amundsen, Author of "Design and Build Great APIs", API Strategist & Advisor at amundsen.com, Inc.
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Putting AI into API Security by Corey Ball, Moss Adamsapidays
Putting AI into API Security
Corey Ball, Author and Sr. Manager Pentest at Moss Adams
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Prototype-first - A modern API development workflow b...apidays
Prototype-first - A modern API development workflow
Tom Akehurst, CTO and Co-Founder at WireMock
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Post-Quantum API Security by Francois Lascelles, Broa...apidays
Post-Quantum API Security: Preparing your APIs for Q-day
Francois Lascelles, Distinguished Engineer at Broadcom and CTO at Layer7
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Increase your productivity with no-code GraphQL mocki...apidays
Increase your productivity with no-code GraphQL mocking
Hugo Guerrero, Chief Software Architect, APIs & Integration Developer Advocate at Red Hat
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Driving API & EDA Success by Marcelo Caponi, Danoneapidays
Driving API & EDA Success: Comparing CoE & C4E Models for Organizational Enablement
Marcelo Caponi, Global Product Manager - API & Integration at Danone
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - Build a terrible API for people you hate by Jim Benne...apidays
Build a terrible API for people you hate
Jim Bennett, Principal Developer Advocate at liblab
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Apidays New York 2024 - API Secret Tokens Exposed by Tristan Kalos and Antoin...apidays
API Secret Tokens Exposed: Insights from Analyzing 1 Million Domains
Tristan Kalos, Co-founder and CEO at Escape
Antoine Carossio, Co-Founder & CTO at Escape
Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024)
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
3. What we
investigated…
• Context: Programmers make mistakes when implementing
security APIs.
– Introduces security vulnerabilities into applications they
develop.
• There is no methodology to evaluate the usability of security
APIs.
• We developed a Cognitive Dimensions Framework (CDF)
based usability evaluation methodology to empirically evaluate
the usability of security APIs.
• We evaluated our CDF through 4 security APIs:
– Google authentication API
– Bouncy Castle lightweight crypto API
– Java Secure Socket Extension (JSSE) API
– OWASP Enterprise Security API (ESAPI)
• Results:
– Identified over 83% of the usability issues
– a considerably good validity and reliability.
• Recommendation:
– Our developed CDF provides a good platform to conduct
usability evaluation for security APIs.
– API developers can use our CDF to design security APIs
that are more usable.
3
4. Implementing
Security into
Software
ACM Reference Format:
Chamila Wijayarathna and Nalin A. G. Arachchilage. 2018. Why Johnny
Can’t Store Passwords Securely?: A Usability Evaluation of
Bouncycastle Password Hashing. In EASE’18: 22nd International
Conference on Evaluation and Assessment in Software Engineering
2018, June 28–29, 2018, Christchurch, New Zealand. ACM, New York,
NY, USA, 6 pages. https://doi.org/10.1145/3210459.3210483
5. What we did?
• In this work, we evaluated the usability of SCrypt password hashing
functionality of Bouncycastle API.
• Programmers to make mistakes (i.e. usability issues) while developing
applications that would result in security vulnerabilities.
• We conducted a study with 10 programmers where each of them spent
around 2 hours for the study and attempted to develop a secure password
storage solution using Bouncycastle API.
• We identified 63 usability issues that exist in the SCrypt implementation of
Bouncycastle API.
• Each participant had reported an average of approximately 15 usability
issues.
• Furthermore, we expect that this work will provide a guidance on how to
conduct usability evaluations for security APIs to identify usability issues exist
in them.
6. The issues we identified
• Selecting method parameters for SCrypt generate method invocation.
• If the programmer uses weak values for these parameters, security of the
password storage will be weak and it will be vulnerable to attacks.
• Using salt with SCrypt.generate() method
• Usage of salt provides protection against dictionary attacks and pre-computed rainbow
attacks.
• Usage of byte array vs String to store passwords
• Strings, password will be stored in the memory for longer and cannot be deleted until
garbage collector clears them.
• Issues observed about the documentation of Bouncycastle API
• Other observed issues
(a) Suggestions shown in Integrated Development Environment
for method parameters
(b) Method parameter names used in Bouncycastle SCrypt
source code
(c) Java API documentation of SCrypt.generate() method
9. Cognitive Dimensions
Framework for security APIs
• Abstraction level: The minimum and maximum levels
of abstraction exposed by the API, and the minimum
and maximum levels usable by a targeted developer.
• Learning style: The knowledge about the API and its
security background that a programmer needs to have
before starting to use the API and how a programmer
would gain the knowledge about the API and its
security background.
• Working framework: The size of the conceptual
chunk (developer working set) needed to work
effectively.
9
10. Cognitive Dimensions
Framework for security APIs
• Work-step unit: How much of a programming task
must/can be completed in a single step.
• Progressive evaluation: To what extent partially
completed code can be executed to obtain feedback
on code behavior.
• Premature commitment: The amount of decisions
that developers have to make when writing code for a
given scenario and the consequences of those
decisions.
• Penetrability: How the API facilitates exploration,
analysis and understanding of its components and its
security related information, and the way a targeted
developer should go about retrieving what is needed.
10
11. Cognitive Dimensions
Framework for security APIs
• API elaboration: The extent to which the API
must be adapted to meet the needs of a targeted
developer.
• API viscosity: The barriers to change inherent in
the API, and how much effort a targeted developer
needs to expend to make a change.
• Consistency: How much of the rest of an API can
be inferred once part of it is learned.
• Role expressiveness: How apparent the
relationship is between each component exposed
by an API and the program as a whole.
11
12. Cognitive Dimensions
Framework for security APIs
• A Domain correspondence: How clearly the API components map
to the domain and any special tricks that the developer needs to be
aware of to accomplish some functionality.
• Hard-to Misuse: How hard it is to make mistakes while using the
API and how much help does the API provide to identify mistakes
that programmers make.
• End-user protection: How much does the security of the end user
of an application developed using the API depend on the
programmer who developed the application.
• Testability: The amount of support that the API provides for the
programmer to test the security of an application that was developed
using the API.
12