Back To Schedule
Wednesday, October 9 • 4:00pm - 4:25pm
OPEN TALK (API): OWASP API Security Top 10

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
In recent years, large reputable companies such as Facebook, Google and Equifax have suffered major data breaches that combined exposed the personal information of hundreds of millions of people worldwide. The common vector linking these breaches – APIs. The scale and magnitude of these breaches are the reason API security has been launched into the forefront of enterprise security concerns – now forcing us to rethink the way we approach API security as a whole.

OWASP Top 10 project has for a long time been the standard list of top vulnerabilities to look for and mitigate in the world of web applications.

APIs represent a significantly different set of threats, attack vectors, and security best practices. This caused the OWASP community to launch OWASP API Security project earlier this year.

In this session we’ll discuss:

· What makes API Security different from web application security
· The top 10 common API security vulnerabilities
· Examples and mitigation strategies for each of the risks

API World 2019 Speakers
avatar for Erez Yalon

Erez Yalon

Director of Security Research, Checkmarx
Erez Yalon heads the security research group at Checkmarx. With vast defender and attacker experience and as an independent security researcher, Erez is responsible for maintaining Checkmarx’s vulnerability detection technology where his previous development experience with a variety... Read More →
avatar for Dmitry Sotnikov

Dmitry Sotnikov

VP of Cloud Platform, 42Crunch
Dmitry Sotnikov serves as Vice President of Cloud Platform at 42Crunch – an enterprise API security company – and also maintains APISecurity.io, a popular community site with daily API Security news and weekly newsletter on API vulnerabilities, breaches, standards, best practices... Read More →

Wednesday October 9, 2019 4:00pm - 4:25pm PDT
API World -- Expo Innovation Stage