API Authentication's Poorly Implemented - Security Issues in Web APIs

Explore real-world examples of web-related API security problems in this conference talk from OWASP AppSec California 2015. Delve into authentication and authorization issues affecting various targets, from major online payment platforms to embedded device backend infrastructures. Learn about implementation flaws, security bugs, and the challenges of integrating legacy APIs with modern RESTful interfaces. Gain insights from Zach Lanier, a Senior Research Scientist with Accuvant Labs, as he shares his expertise in network, mobile, and application security.