{"product_id":"9781430268178","title":"Advanced API Security: Securing APIs with OAuth 2.0, OpenID Connect, JWS, and JWE","description":"\u003cp\u003e\u003cem\u003eAdvanced\u003c\/em\u003e\u003cem\u003e API Security\u003c\/em\u003e is a complete reference to the next wave of challenges in enterprise security--securing public and private APIs. \u003c\/p\u003e\u003cp\u003eAPI adoption in both consumer and enterprises has gone beyond predictions. It has become the ‘coolest’ way of exposing business functionalities to the outside world. Both your public and private APIs, need to be protected, monitored and managed. Security is not an afterthought, but API security has evolved a lot in last five years. The growth of standards, out there, has been exponential. \u003c\/p\u003e\u003cp\u003eThat's where \u003cem\u003eAdvanced\u003c\/em\u003e\u003cem\u003eAPI Security\u003c\/em\u003e comes in--to wade through the weeds and help you keep the bad guys away while realizing the internal and external benefits of developing APIs for your services. Our expert author guides you through the maze of options and shares industry leading best practices in designing APIs for rock-solid security. The book will explain, in depth, securing APIs from quite traditional HTTP Basic Authentication to OAuth 2.0 and the standards built around it. \u003c\/p\u003e\u003cp\u003eBuild APIs with rock-solid security today with \u003cem\u003eAdvanced \u003c\/em\u003e\u003cem\u003eAPI Security\u003c\/em\u003e.\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cul\u003e\n\u003cli\u003eTakes you through the best practices in designing APIs for rock-solid security.\u003c\/li\u003e\n\u003cli\u003eProvides an in depth tutorial of most widely adopted security standards for API security.\u003c\/li\u003e\n\u003cli\u003eTeaches you how to compare and contrast different security standards\/protocols to find out what suits your business needs the best.\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003eWhat youll learn\u003cul\u003e\n\u003cli\u003eBuild APIs with rock-solid security by understanding best practices and design guidelines.\u003c\/li\u003e\n\u003cli\u003eGet a thorough understanding about widely adopted security standards for API security.\u003c\/li\u003e\n\u003cli\u003eCompare and contrast different security standards\/protocols to find out what suits your business needs, the best.\u003c\/li\u003e\n\u003cli\u003eExpand business APIs to partners and outsiders with Identity Federation.\u003c\/li\u003e\n\u003cli\u003eGet hands-on experience in developing clients against Facebook, Twitter, and Salesforce APIs.\u003c\/li\u003e\n\u003cli\u003eUnderstand and learn how to mitigate security threats.\u003c\/li\u003e\n\u003c\/ul\u003eWho this book is for\u003cp\u003e\u003cem\u003eAdvanced \u003c\/em\u003e\u003cem\u003eAPI Security \u003c\/em\u003eis for enterprise security architects and developers who are designing, building and managing APIs. The book will provide guidelines, best practices in designing APIs and threat mitigation techniques for enterprise security architects while developers would be able to gain hands-on experience by developing API clients against Facebook, Twitter, Salesforce and many other cloud service providers.\u003c\/p\u003eTable of Contents\u003cul\u003e\n\u003cli\u003eManaged APIs\u003c\/li\u003e\n\u003cli\u003eSecurity by Design\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eHTTP Basic\/Digest Authentication\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eMutual Authentication and Transport Level Security\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eIdentity Delegation\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eOAuth 1.0\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eOAuth 2.0 AND Bearer Token Profile\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eOAuth 2.0 MAC Token Profile\u003c\/li\u003e\n\u003cli\u003eOauth 2.0 Profiles\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eUser Managed Access (UMA)\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eFederation\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eOpenID Connect\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003eJWT, JWS, and JWE\u003cp\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003ePatterns \u0026amp; Practices \u003c\/li\u003e\n\u003c\/ul\u003e","brand":"Apress","offers":[{"title":"Default Title","offer_id":47124731166960,"sku":"9781430268178","price":67.99,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0737\/7593\/9824\/files\/9781430268178_p0.jpg?v=1769903312","url":"https:\/\/shop-qa.barnesandnoble.com\/products\/9781430268178","provider":"Barnes \u0026 Noble (DEV)","version":"1.0","type":"link"}