Tag: openidconnect

Episode 383: Neil Madden On Securing Your API

Filed in Episodes by on October 10, 2019 0 Comments
Episode 383: Neil Madden On Securing Your API

Neil Madden, author of the API Security in Action book and Security Director of ForgeRock, discusses the key technical features of securing an API. Host Gavin Henry spoke with Madden about API versus Web App security, choice of authentication tokens, the various security models you can follow, NIST-800-92, ISO27001, STRIDE, CIA Triad, audit log best […]

Continue Reading »

Episode 376: Justin Richer On API Security with OAuth 2

Filed in Episodes by on August 13, 2019 0 Comments
Episode 376: Justin Richer On API Security with OAuth 2

Justin Richer, lead author of the OAuth2 In Action book and editor of OAuth extensions RFC 7591, 7592, and 7662, discusses the key technical features of the OAuth 2.0, the industry-standard protocol for authorization and what makes this the best choice for authorizing access to API resources. Host Gavin Henry spoke with Richer about browser […]

Continue Reading »