apidays LIVE London 2021 - Securing PII at runtime by Rob Dickinson, Resurface Labs Inc

•

0 likes•394 views

apidays LIVE London 2021 - Reaching Maximum Potential in Banking & Insurance with API Mindset October 27 & 28, 2021 API Security Managing API privacy and compliance at the source: Securing PII at runtime Rob Dickinson, CTO & Co-founder of Resurface Labs Inc

Technology

Managing API privacy and
compliance at the source
Securing PII
at Runtime

2
Hello!
I am Rob Dickinson
CTO at Resurface Labs
@robfromboulder rob@resurface.io

The challenge
Anti-patterns
Strategies
Data Architecture
Agenda

API monitoring is the key to better APIs
4
Perimeter
Whack-a-Mole
Stronger API
Services
…but this requires working with PII

New York
JULY
Australia
SEPTEMBER
Singapore
APRIL
Helsinki & North
MARCH
Paris
DECEMBER
London
OCTOBER
Jakarta
FEBRUARY
Hong Kong
AUGUST
JUNE
India
MAY
Check out our API Conferences here
50+ events since 2012, 14 countries, 2,000+ speakers, 50,000+ attendees,
300k+ online community
Want to talk at one of our conferences?
Apply to speak here

Common emotions and attitudes regarding PII
5

Breaches by the numbers
• Breaches due to malicious attack: 52%
• Breaches due to system/human failures: 48%
• Breaches with customer PII: 80%
• Average time to identify and contain a breach: 280 days
• Average time to detect and contain a breach caused by a malicious attack: 315 days
• Average savings of containing a breach in less than 200 days: $1.12 million
-- 2020 Cost of Data Breach Report, the Ponemon Institute
6

Insecure handling of PII is getting expensive
7

💣 Challenges to securing PII at runtime
• Tightening regulations
• Rapid rate of change
• Expanding definitions of PII
• So many vendors/platforms
• Inability to change apps or
databases in many cases
• Many different techniques for
security and privacy protection
8
• No “easy button”
• High cost of compliance
• Security by default?
• Legit data sharing
• Implementing revocation
• Handling zero-day failures/attacks
• Getting developer attention 😬

💥 Anti-patterns for PII security and user privacy
• “No PII here” strategy
• “All data is PII” strategy
• Impossible approval process
• “God mode” administrators
• Failing to get user consent
• Undisclosed 3rd party transfers
10
• The honeypot database
• Overly destructive transforms
• One-time masking (on write)
• Perimeter security will be enough
• Just encrypt at disk/volume level
• Production-only configurations

🚀 Strategies for securing PII at runtime
• People are the weakest link
• Optimize for number of
conspirators required
• Enforce narrowest group-level and
user-level permissions at runtime
• Regularly audit permissions
12
• Data needs to be siloed, and
microservices are great for this!
• Optimize for number of silos that
must be breached
• Keep data close to source 😀
• Expire data automatically 😍
• Monitor PII transfer 🤩
• Virtualize access to master data
records through query layer 🤩
FOR PEOPLE FOR TECH

Virtualized data access with Trino and Resurface
13
• Trino for distributed queries
• Resurface for API system of record
• Column selection, row selection,
tokenizing, masking, sampling and
map/reduce through views
• User and group-level GRANTs
• Views can inherit from other views
• Views apply retroactively
• No changes to existing databases

Security is necessary for new & creative uses of PII
15

16
Thank you!
Any Questions?
You can reach me after this talk:
@robfromboulder rob@resurface.io

The document discusses using Open Policy Agent (OPA) for microservice application authorization. It describes the new authorization challenges of moving from monoliths to microservices, and how OPA can be used to enforce consistent authorization policies across microservices through a service mesh. It provides examples of how OPA policies can be used for user authorization, service authorization, and context-aware authorization.

APidays Paris 2019 - API-First vs Data Driven Architecture by Jerome Louvel, ...

apidays

The document discusses the differences between API-first and data-driven architecture styles. It argues that while they may seem opposed, with APIs largely built upon data, the styles can be bridged. A hybrid integration approach is suggested, combining API and data integration to support both styles. The role of APIs in digital business is to provide experiences, while being built upon a foundation of integrated, high-quality data. Choosing the best of both styles results in a digital architecture that is fast, delightful, trustworthy and insightful.

Dell NVIDIA AI Powered Transformation in Financial Services Webinar

Bill Wong

Digital transformation through data analytics and AI can help financial services firms address business, technology, and labor challenges caused by COVID-19. Key trends include increased reliance on remote work and digital platforms, and the importance of data analytics for decision making. By 2025, 90% of new apps will use AI. The document discusses NVIDIA and Dell Technologies' partnership and strategies for providing infrastructure to support AI workloads through solutions like the DGX A100 system, which can support training, inference, and analytics on one platform through technologies like GPUs and MIG. This helps provide a more flexible and efficient infrastructure compared to traditional siloed approaches.

Modernizing IT with Microservices

LeanIX GmbH

A microservices architecture is not a new style of building large scale enterprise applications. Companies like Netflix and Amazon have implemented a microservices architecture to deliver successful products over the last few years. But is a microservices architecture right for your organization? What should you focus on when getting started? How do microservices affect your business model? In this presentation you will learn: • What Microservices are • Why use Microservices • How to model Microservices • How to automatically create your Microservice EA repository • How to plan the Microservice roadmap

apidays LIVE Hong Kong 2021 - Rethinking Financial Services with Data in Moti...

apidays

Trying to form an API/service strategy to keep pace with the IoT revolution? Know how you can address issues and challenges your enterprise might face while implementing it and know how you can address the same. This webinar will also explains how WSO2 API Manager and WSO2 Governance Registry have helped enterprises overcome the following challenges: 1. How the number of services and their users affect service discoverability, catalog, and re-usability. 2. Mistrust among producers and consumers 3. Reliability, stability, and availability of services 4. How externally built common and reusable services meet requirements (anti-patterns - NIH)

Power

guest49443e

ActiveGrid provides a transaction grid computing platform that enables businesses to build and deploy applications across a grid of commodity servers using open source technologies. The platform allows applications to dynamically adapt transactions based on various factors like user type, device capabilities, and quality of service policies. It aims to offer a lower-cost and more scalable alternative to traditional 3-tier architectures. ActiveGrid products include tools for graphical application development, grid application servers, and transaction processing servers.

Democratizing Apache Spark for the Enterprise with Jonathan Gole

Databricks

The document discusses Capital One's efforts to unify analytics across the enterprise using Apache Spark. It outlines challenges with traditional bank infrastructure limiting digital transformation. Capital One developed a unified analytics platform and application framework around Apache Spark to give all users like data engineers, analysts, and scientists shared access to data and tools. This improved collaboration and enabled more innovative use of data and machine learning. Lessons learned included focusing on customer needs, starting small and iterating, embracing community contributions, and taking a unified approach.

apidays LIVE LONDON - Reference Architecture as Code (RaaC): A Framework to A...

apidays

Connected Finance Reference Architecture

WSO2

To view recording of this webinar please use the below URL: http://wso2.com/library/webinars/2015/02/connected-finance-reference-architecture/ This session will describe How to establish the internal/external connectivity in finance to cater to modern, rapidly-changing financial business needs How to enhance connectivity by adding QoS, such as security, governance, audit, and monitoring Reference architecture to address the above issues

Transforming Retail Banking: Competitive Advantage through Microservices

NuoDB

This document discusses how retail banks can gain a competitive advantage through digital transformation using microservices and containers. It states that without a modern database, businesses can only modernize simple applications or the database is not part of the digital transformation. The document advocates that a container-native database like NuoDB enables increased developer productivity, improved performance through scale-out and caching, and lower operational costs through high availability and disaster recovery.

Regina Pison - Elastic - OSL19

marketingsyone

APIs from the Edge to the Mesh

Nordic APIs

For a long time APIs have largely been an exercise at the edge of complexity. They provide an engaging interface to attract developers, perhaps an underlying platform to monitor their consumption, and a means for those interested in whatever drives our backend to manage that success. That type interaction demands a certain type of interaction. But what happens in a backend world of microservices? Do we really have the same API needs and flexibility concerns at the mesh that we do at the edge and how might we best address these two worlds going forward? I will present the case for edge, the case for the mesh and try to bridge whatever space we have between them: chasm or ditch.

Microservices: Keep Complexity under Control with LeanIX Enterprise Architect...

LeanIX GmbH

IT trends like Docker and microservices promise great advantages but cause a new complexity. How can agile teams act autonomously and still create great products? Learn why agile teams, microservices and Docker complement each other and lead to a more flexible IT. === LeanIX offers an innovative software-as-a-service solution for Enterprise Architecture Management (EAM), based either in a public cloud or the client’s data center. Companies like Adidas, Axel Springer, Helvetia, RWE, Trusted Shops and Zalando use LeanIX Enterprise Architecture Management tool. Free Trial: http://bit.ly/LeanIXFreeTrial

Navigating the Digital Transformation Landscape

WSO2

The document discusses digital transformation and provides guidance on how organizations can navigate it. Digital transformation means improving customer experience through new digital products and business models, optimizing operations, and facilitating digital-native customers and employees. It involves adopting new technologies like APIs, mobile/IoT integration, and data insights, as well as shifting to cloud platforms. Organizations are advised to build developer ecosystems, fail fast through prototypes, empower employees, address business problems, and learn continuously throughout the process. The key message is that digital transformation is ultimately a business transformation powered by software and technology.

BI Studio profile

Vassily Buzuyev

This group is comprised of mathematicians and IT specialists from two universities in Ukraine and Russia with 20 years of experience developing banking automation systems. They have experience creating core banking systems, retail banking platforms, billing systems, card processing, and business intelligence solutions for banks and energy companies in Ukraine. Their strategic objectives are to create large-scale financial services networks and transaction processing systems. They have already developed prototypes for an innovative transaction platform and retail banking system. The team includes developers, mobile developers, analysts, security specialists, and managers with extensive experience in banking technologies.

apidays LIVE Jakarta - Building an Event-Driven Architecture by Harin Honesty...

apidays

apidays LIVE Australia 2021 - Quantum Duality of “API as a business and a tec...

apidays

This document discusses the evolution of APIs and supply chains for APIs. It notes that APIs have evolved from isolated integrations to managed API products. Supply chains for APIs are also emerging in industries like finance and telecommunications. The document advocates for applying lessons from physical supply chain management to API product management. It also discusses trends like API federation enabling multi-party business models, the shift to cloud-native architectures, and the rise of polyglot technologies in APIs.

Composable data for the composable enterprise

Matt McLarty

apidays LIVE London 2021 - Interfaces from a strategic and management perspec...

apidays

apidays LIVE Singapore 2021 - A cloud-native approach to open banking in acti...

apidays

[WSO2Con USA 2018] Integration is Sexy

WSO2

Integration is becoming increasingly important for organizations as they adopt microservices, APIs, and other modern architectures. WSO2 provides an integration platform to help organizations become "integration agile" by optimizing their people, processes, and technology for continuous integration and delivery. The platform includes capabilities for API management, integration, messaging, identity and access management, and analytics to enable organizations to develop, run, manage and reuse integrations and APIs across a composable enterprise architecture.

APIs: State of the Union

CA API Management

apidays LIVE Paris 2021 - Detecting and Protecting PII by Rob Dickinson, Resu...

apidays

Efficiencies in RPA with UiPath and CyberArk Technologies - Session 2

DianaGray10

What's hot

High performance data center computing using manageable distributed computing

Juniper Networks

apidays LIVE India - Digital Trust Infrastructure - Key to digital transforma...

apidays

How to Manage APIs in your Enterprise for Maximum Reusability and Governance

HARMAN Services

Power

guest49443e

Democratizing Apache Spark for the Enterprise with Jonathan Gole

Databricks

apidays LIVE LONDON - Reference Architecture as Code (RaaC): A Framework to A...

apidays

Connected Finance Reference Architecture

WSO2

Transforming Retail Banking: Competitive Advantage through Microservices

NuoDB

Regina Pison - Elastic - OSL19

marketingsyone

APIs from the Edge to the Mesh

Nordic APIs

Microservices: Keep Complexity under Control with LeanIX Enterprise Architect...

LeanIX GmbH

Navigating the Digital Transformation Landscape

WSO2

BI Studio profile

Vassily Buzuyev

apidays LIVE Jakarta - Building an Event-Driven Architecture by Harin Honesty...

apidays

apidays LIVE Australia 2021 - Quantum Duality of “API as a business and a tec...

apidays

Composable data for the composable enterprise

Matt McLarty

apidays LIVE London 2021 - Interfaces from a strategic and management perspec...

apidays

apidays LIVE Singapore 2021 - A cloud-native approach to open banking in acti...

apidays

[WSO2Con USA 2018] Integration is Sexy

WSO2

APIs: State of the Union

CA API Management

What's hot (20)

High performance data center computing using manageable distributed computing

apidays LIVE India - Digital Trust Infrastructure - Key to digital transforma...

How to Manage APIs in your Enterprise for Maximum Reusability and Governance

Power

Democratizing Apache Spark for the Enterprise with Jonathan Gole

apidays LIVE LONDON - Reference Architecture as Code (RaaC): A Framework to A...

Connected Finance Reference Architecture

Transforming Retail Banking: Competitive Advantage through Microservices

Regina Pison - Elastic - OSL19

APIs from the Edge to the Mesh

Microservices: Keep Complexity under Control with LeanIX Enterprise Architect...

Navigating the Digital Transformation Landscape

BI Studio profile

apidays LIVE Jakarta - Building an Event-Driven Architecture by Harin Honesty...

apidays LIVE Australia 2021 - Quantum Duality of “API as a business and a tec...

Composable data for the composable enterprise

apidays LIVE London 2021 - Interfaces from a strategic and management perspec...

apidays LIVE Singapore 2021 - A cloud-native approach to open banking in acti...

[WSO2Con USA 2018] Integration is Sexy

APIs: State of the Union

Similar to apidays LIVE London 2021 - Securing PII at runtime by Rob Dickinson, Resurface Labs Inc

apidays LIVE Paris 2021 - Detecting and Protecting PII by Rob Dickinson, Resu...

apidays

Efficiencies in RPA with UiPath and CyberArk Technologies - Session 2

DianaGray10

Understanding Database Encryption & Protecting Against the Insider Threat wit...

MongoDB

The document discusses protecting databases from insider threats using MongoDB encryption. It describes how insider threats are on the rise and how privileged users can bypass traditional security to access sensitive data. The solution presented is using Vormetric transparent encryption to encrypt MongoDB databases, which applies encryption and access controls without changes to applications or the database. Key benefits include field-level encryption, blocking administrative users' access to raw data, and centralized key management on a separate device from encrypted data.

Data Breaches and Security Rights in SharePoint Webinar

Concept Searching, Inc

70% of all security breaches are due to an organization’s own staff. Register for this webinar and find out how not to become a statistic. Security is increasingly becoming a significant challenge, regarding how ensuring unstructured and semi-structured content is protected, and also the security rights of the individuals within the organization that need to be given or denied rights to organizational assets. This Concept Searching webinar will focus on all aspects of security in a SharePoint environment, using native SharePoint tools, conceptClassifier for SharePoint, or integrated with your security application. conceptClassifier for SharePoint and conceptClassifier for Office 365 deliver semantic metadata generation, auto-classification, and taxonomy tools integrated natively with the SharePoint Term Store. How does it work with privacy and confidential content? The products identify unknown security or confidential exposures in real-time from diverse repositories. Identification of not only standard descriptors but also organizationally defined vocabulary can also be identified. Once identified they are routed to a repository and removed from unauthorized access and portability.

Aligning Application Security to Compliance

Security Innovation

Regulatory compliance mandates have historically focused on IT & endpoint security as the primary means to protect data. However, as our digital economy has increasingly become software dependent, standards bodies have dutifully added requirements as they relate to development and deployment practices. Enterprise applications and cloud-based services constantly store and transmit data; yet, they are often difficult to understand and assess for compliance. This webcast will present a practical approach towards mapping application security practices to common compliance frameworks. It will discuss how to define and enact a secure, repeatable software development lifecycle (SDLC) and highlight activities that can be leveraged across multiple compliance controls. Topics include: * Consolidating security and compliance controls * Creating application security standards for development and operations teams * Identifying and remediating gaps between current practices and industry accepted "best practices”

INTERFACE, by apidays - Securing PII

apidays

This document discusses strategies for discovering and securing personally identifiable information (PII) at runtime. It outlines some common anti-patterns for PII security like assuming no PII exists or that all data is PII. The document then provides strategies like enforcing narrow permissions, automatically expiring data, monitoring PII transfers, and virtualizing access to data through query layers. It describes how the Resurface platform can be used for API monitoring and detecting PII leaks in real-time. Finally, it discusses using Trino for distributed queries across data sources and Resurface for the API system of record, with views applying retroactive access controls without changing databases.

SharePointlandia 2013: SharePoint and Compliance

Matthew R. Barrett

The SharePoint Migration Playbook

JoAnna Cheshire

This document discusses governance, security, and compliance considerations for SharePoint including: 1) Identifying stakeholders to ensure technology ROI, security, and compliance as well as outlining change management processes and controlling unauthorized applications. 2) The need for industry-specific compliance adherence related to items like HIPAA, PII, SEC, FINRA, and document retention policies. 3) Conducting internal security audits, managing access levels and permissions, addressing vulnerabilities, and having breach identification and response protocols.

Success with SharePoint

StoverEffect

John Stover presented at a technology conference on SharePoint: the good, the bad, and the ugly. He began by explaining what SharePoint is and how it is commonly used today. He then discussed how to plan for SharePoint success by defining objectives, requirements, workloads, and technical environments. Stover also provided recommendations on training, support, and governance. He wrapped up by emphasizing the importance of testing and providing examples of how not to implement SharePoint and ensure failure.

Webinar - Compliance with the Microsoft Cloud- 2017-04-19

TechSoup

Everyone throws around the word compliance but how do you actually achieve that? In this free, 60-minute webinar Sam Chenkin from Tech Impact discusses achievable goals for the nonprofit community to keep their data safe with the Microsoft Cloud. We explore account security like two-factor authentication, data security like encryption, and how to make sure only compliant devices can access your data.

SmartERP PeopleSoft Security

Smart ERP Solutions, Inc.

This document summarizes the services provided by SmartERP Solutions, an implementation partner for Oracle, NetSuite, PeopleSoft, and JDE solutions. They have over 300 clients worldwide across various industries and 350+ employees. They offer solutions and services around ERP implementations including PeopleSoft, security assessments, access reviews, segregation of duties analysis, and reporting on access and security as a subscription service. They aim to help organizations comply with various data security and privacy regulations.

Cloud Security Primer - F5 Networks

Harry Gunns

This document discusses F5 Networks and SecureData's partnership. It notes that SecureData is an F5 Gold Partner and that F5 provides multi-cloud security solutions. It also discusses challenges of multi-cloud environments like operational complexity and security issues. F5 solutions aim to provide consistent security visibility, reduce cloud costs, and offer a unified security dashboard across environments.

MongoDB.local Sydney: The Changing Face of Data Privacy & Ethics, and How Mon...

MongoDB

Public concern for the safety of data is growing – not just in how criminals might use stolen data to commit fraud, but also in how personal data is used by the organisations we engage with. This is limiting growth in digital services, and damaging trust in government and enterprises. The EU's General Data Protection Regulation (GDPR) came into force in May 2018. Now it is influencing new privacy regulations around the world, governing how organisations collect, store, process, retain, and share the personal data of citizens. In this session, we explore the specific data management requirements demanded by new privacy regulations, digital ethics, and everyone's role in being conscientious stewards of customer data. We discuss how MongoDB can provide the core technology foundations to help you accelerate your path to compliance with new privacy demands.

Seattle Tech4Good meetup: Data Security and Privacy

Sabra Goldick

12/7/2016 - It's difficult to avoid news stories about hacks and misused databases. For our Q4 meetup, we will discuss what nonprofits can do to protect their systems and data. Each panelist will outline best practices for protecting your own data as well as constituent data. PANELISTS * Mary Gardner, Chief Information Security Officer at Seattle Children's Hospital. * Ralph Johnson, Chief Information Security and Privacy Officer, King County * Peter Kittas, Web and IT Consultant, Revelate LLC

Neo4j GraphDay Seattle- Sept19- Connected data imperative

Neo4j

Hotels, Hookups and Video Conferencing: A Top 10 Countdown to 2020's Worst Da...

DevOps.com

This year has been full of surprises — and cloud security data breaches have been no exception. From hotel chains to dating apps and video conferencing, misconfigurations and mistakes have left many organizations with exposed data. Knowing how data breaches happen and how to prevent them from happening is key when it comes to defending your identities and data access. In this webinar, Eric Kedrosky, CISO and director of cloud research at Sonrai Security, dissects the top 10 notorious cloud data breaches from 2020, breaking down how each was caused and how they could have been prevented. This webinar will detail the anatomy of each type of data breach, what we can learn, what allowed the data breach to happen and the preventative measures. Join this webinar as we dissect the year’s top cloud data breaches and what caused them, including: Identity and authentication for data storage Public cloud misconfiguration Key and secret management Overprivileged identities Malicious Bad Actors

GDPR Part 2: Quest Relevance

Adrian Dumitrescu

The document discusses strategies for complying with the EU's General Data Protection Regulation (GDPR). It outlines five critical strategies: 1) Know all personal data stored, 2) Carefully manage access to personal data, 3) Encrypt as much data as possible, 4) Monitor changes affecting sensitive data and prevent critical changes, and 5) Investigate potential breaches. It also discusses how the software company Quest can help customers strengthen data protection, ensure compliance, and avoid fines through solutions that secure and manage data, modernize infrastructure, and provide insights.

Compliance & Identity access management

Prof. Jacques Folon (Ph.D)

The document discusses identity and access management (IAM) and its relationship to cloud computing. IAM is the process of managing digital identities and access privileges for users, systems, and services. When using cloud computing, an organization relinquishes control over infrastructure but gains flexibility, scalability, and reduced costs. IAM becomes especially important in the cloud to ensure security, privacy, and compliance through features like authentication, authorization, and audit tracking across multiple cloud applications and services.

Top 5 security errors and how to avoid them - DEM06-S - Mexico City AWS Summit

Amazon Web Services

According to data collected from an analysis of millions of resources across hundreds of customers, human configuration errors that may expose cloud resources are increasingly common. The potential impact can be significant. Everyone needs to play their part in managing the risks, but first, you need to understand what risks need to be managed. We’ve distilled our customer experiences into the five most commonly made errors. In this session, we explain how to best avoid these errors and discuss what their potential impacts are.

APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...

apidays

This document discusses approaching API security for multicloud environments using an abstraction called "Metacloud." It notes that as cloud deployments become more complex with multiple APIs, security risks increase. The document proposes addressing this by abstracting resources across clouds to reduce complexity and enable common security practices. This involves automating API access, data processing, services, and platforms to create a unified "Metacloud" or "Supercloud." The goal is to orchestrate security, observability, access management and other functions to help manage risk at scale across multiple cloud providers.

Similar to apidays LIVE London 2021 - Securing PII at runtime by Rob Dickinson, Resurface Labs Inc (20)

apidays LIVE Paris 2021 - Detecting and Protecting PII by Rob Dickinson, Resu...

Efficiencies in RPA with UiPath and CyberArk Technologies - Session 2

Understanding Database Encryption & Protecting Against the Insider Threat wit...

Data Breaches and Security Rights in SharePoint Webinar

Aligning Application Security to Compliance

INTERFACE, by apidays - Securing PII

SharePointlandia 2013: SharePoint and Compliance

The SharePoint Migration Playbook

Success with SharePoint

Webinar - Compliance with the Microsoft Cloud- 2017-04-19

SmartERP PeopleSoft Security

Cloud Security Primer - F5 Networks

MongoDB.local Sydney: The Changing Face of Data Privacy & Ethics, and How Mon...

Seattle Tech4Good meetup: Data Security and Privacy

Neo4j GraphDay Seattle- Sept19- Connected data imperative

Hotels, Hookups and Video Conferencing: A Top 10 Countdown to 2020's Worst Da...

GDPR Part 2: Quest Relevance

Compliance & Identity access management

Top 5 security errors and how to avoid them - DEM06-S - Mexico City AWS Summit

APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...

More from apidays

Apidays Helsinki 2024 - Sustainable IT and API Performance - How to Bring The...

apidays

Sustainable IT and API Performance - How to Bring Them Together Merja Kajava, Founder - Aavista Oy Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - APIs ahoy, the case of Customer Booking APIs in Finn...

apidays

Keynote 1: APIs ahoy, the case of Customer Booking APIs in Finnlines and Grimaldi Lines, ShortSea Vesa Vähämaa, Head of Group IT, Software at Finnlines Plc Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - From Chaos to Calm- Navigating Emerging API Security...

apidays

From Chaos to Calm: Navigating Emerging API Security Challenges Eli Arkush, Principal Solutions Engineer, API Security at Akamai Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - What is next now that your organization created a (si...

apidays

What is next now that your organization created a (significant) set of APIs? Rogier van Boxtel, Director, Pre Sales Consulting - Axway Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - There’s no AI without API, but what does this mean fo...

apidays

There’s no AI without API, but what does this mean for Security? Timo Rüppell, VP of Product - FireTail.io Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - Security Vulnerabilities in your APIs by Lukáš Ďurovs...

apidays

Security Vulnerabilities in your APIs Lukáš Ďurovský, Staff Software Engineer at Thermo Fisher Scientific Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - Data, API’s and Banks, with AI on top by Sergio Giral...

apidays

Data, API’s and Banks, with AI on top Sergio Giraldo, IT Lead - ING Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - Data Ecosystems Driving the Green Transition by Olli ...

apidays

Data Ecosystems Driving the Green Transition Olli Kilpeläinen, VP - Data Platform & Ecosystem at Betolar Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - Bridging the Gap Between Backend and Frontend API Tes...

apidays

Bridging the Gap Between Backend and Frontend API Testing with K6 Ayush Goyal, Senior Software Engineer - Grafana Labs Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - API Compliance by Design by Marjukka Niinioja, Osaango

apidays

API Compliance by Design Marjukka Niinioja, APItalista & Founding Partner - Osaango Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Helsinki 2024 - ABLOY goes API economy – Transformation story by Hann...

apidays

ABLOY goes API economy – Transformation story Hanna Sillanpää Head of Digital Solutions PU - Abloy Apidays Helsinki & North 2024 - Connecting Physical and Digital: Sustainable APIs for the Era of AI, Super and Quantum Computing (May 28 and 29, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The subtle art of API rate limiting by Josh Twist, Zuplo

apidays

The subtle art of API rate limiting Josh Twist, Co-founder & CEO at Zuplo Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - RESTful API Patterns and Practices by Mike Amundsen, ...

apidays

ESTful API Patterns and Practices Mike Amundsen, Author of "Design and Build Great APIs", API Strategist & Advisor at amundsen.com, Inc. Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Putting AI into API Security by Corey Ball, Moss Adams

apidays

Putting AI into API Security Corey Ball, Author and Sr. Manager Pentest at Moss Adams Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Prototype-first - A modern API development workflow b...

apidays

Prototype-first - A modern API development workflow Tom Akehurst, CTO and Co-Founder at WireMock Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Post-Quantum API Security by Francois Lascelles, Broa...

apidays

Post-Quantum API Security: Preparing your APIs for Q-day Francois Lascelles, Distinguished Engineer at Broadcom and CTO at Layer7 Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Increase your productivity with no-code GraphQL mocki...

apidays

Increase your productivity with no-code GraphQL mocking Hugo Guerrero, Chief Software Architect, APIs & Integration Developer Advocate at Red Hat Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Driving API & EDA Success by Marcelo Caponi, Danone

apidays

Driving API & EDA Success: Comparing CoE & C4E Models for Organizational Enablement Marcelo Caponi, Global Product Manager - API & Integration at Danone Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Build a terrible API for people you hate by Jim Benne...

apidays

Build a terrible API for people you hate Jim Bennett, Principal Developer Advocate at liblab Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - API Secret Tokens Exposed by Tristan Kalos and Antoin...

apidays

API Secret Tokens Exposed: Insights from Analyzing 1 Million Domains Tristan Kalos, Co-founder and CEO at Escape Antoine Carossio, Co-Founder & CTO at Escape Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

More from apidays (20)