Common API Security Pitfalls

Common API Security Pitfalls

NDC Conferences via YouTube Direct link

MISHANDLING CLIENT-SIDE SESSION DATA

6 of 11

6 of 11

MISHANDLING CLIENT-SIDE SESSION DATA

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Common API Security Pitfalls

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 A10 Underprotected APIs
  3. 3 OVER-EXPOSING API DATA
  4. 4 LACK OF PROPER AUTHORIZATION
  5. 5 FAILURE TO AUDIT THE AUTHORIZATION POLICY
  6. 6 MISHANDLING CLIENT-SIDE SESSION DATA
  7. 7 MISTAKING JWTS FOR SESSIONS
  8. 8 LACK OF PROPER JWT KEY MANAGEMENT
  9. 9 Cookie: ID=42
  10. 10 UNDERESTIMATING THE IMPACT OF SESSION TRANSPORT
  11. 11 FAILURE TO COMPARTMENTALIZE

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.