Developer Week New York 2020

Brooklyn EXPO Center, Noble Street, Brooklyn, NY, USA

About

DeveloperWeek New York is the East Coast’s largest developer & software engineering event with 3,000+ developers, engineers, architects, dev managers, IT professionals and tech execs. All will converge in New York City for a series of events covering the cutting-edge innovation in the developer technology industry: 6+ Conferences, Summits & Workshop Tracks, the 2-Day Expo, the DeveloperWeek New York Hackathon, Hiring Expo, and Partner Events.

Join 42Crunch’s Chief Product Officer for his session:

API Security in a Kubernetes World

Securing APIs deployed in Kubernetes implies securing the infrastructure but also the APIs themselves. Having a perfectly setup cluster, with all possible protections in place unfortunately is only one aspect of the recent OWASP Top10 for API Security. Other issues such as data leakage, mass assignment or broken authentication must be handled at the application level.

Learning from other’s mistakes:
The publication of the OWASP API Security Top 10 marks a corner stone in the API Security history. Finally, there is a global recognition that applications based on APIs require different protection. In the past year or so, more than 200 breaches have been published on apisecurity.io. Some very well known names are on that list: T-Mobile, Facebook, and Uber to name a few. What did they do wrong? How can we learn from their mistakes and take an approach that prevents most common API security issues.

The Kubernetes specifics:
API security is not specific to Kubernetes. But Kubernetes deployments, usually created to run microservices-based, decoupled applications, make some API security worse. To start with, the sheer number of APIs to manage and protect. In Kubernetes deployments, everything is an API. Enterprises end up having to protect 1000’s of endpoints, and to make it worse, those endpoints get re-deployed very frequently. DevSecOps anyone?

Pragmatism is key:
Our goal in this talk is to share pragmatic, direct actionable best practices. We present a methodology to “pick your battles” and focus on the most critical issues first. You will leave this with either the great satisfaction that you’ve already done a good job to protect your APIs or an actionable TO-DO list to address immediate issues.

 


Location

Brooklyn EXPO Center, Noble Street, Brooklyn, NY, USA

Get API Security news directly in your Inbox.

By clicking Subscribe you agree to our Data Policy


Upcoming Events

Construct Event Event Date Event End Date Event Location Event Category Event Image
Developer Week Seattle: Cloud Edition 2020 May 4, 2020 8:00 am May 5, 2020 5:00 pm Grand Hyatt Seattle, Pine Street, Seattle, WA, USA Conference
Austin API Summit 2020 May 4, 2020 8:00 am May 6, 2020 6:00 pm JW Marriott Austin, East 2nd Street, Austin, TX, USA Conference
CANCELLED: ISSA-LA Security Summit XII 2020 May 5, 2020 8:00 am May 8, 2020 5:00 pm Annenberg Community Beach House, Pacific Coast Highway, Santa Monica, CA, USA Conference
European Identity and Cloud Conference 2020 May 12, 2020 8:00 am May 15, 2020 6:00 pm Conference
APIdays Helsinki 2020 June 2, 2020 8:00 am June 3, 2020 6:00 pm Katariina Saksilaisen katu 9, 00560 Helsinki, Finland Conference
Developer Week New York 2020 June 16, 2020 8:00 am June 18, 2020 5:00 pm Brooklyn EXPO Center, Noble Street, Brooklyn, NY, USA Conference
Virtual Event: IIoT World Day 2020 June 30, 2020 8:00 am June 30, 2020 7:00 pm Conference
Platform Summit 2020 October 5, 2020 8:00 am October 7, 2020 6:00 pm Clarion Hotel Stockholm, Ringvägen, Stockholm, Sweden Conference
API World 2020 October 27, 2020 8:00 am October 29, 2020 6:00 pm San Jose McEnery Convention Center, 150 W San Carlos St, San Jose, CA 95113, USA Conference