API Security Techniques

Secure APIs using OWASP API Top 10 and modern authentication patterns.

APIs are a primary attack surface in modern systems. This course shows how to identify vulnerabilities and implement strong security controls in real-world API environments.

Content:

  • OWASP API Security Top 10 overview
  • Authentication & authorization: API keys, JWT, OAuth2, OIDC
  • RBAC, scopes and access control patterns
  • Input validation, sanitisation and safe error handling
  • Rate limiting, throttling and IP filtering
  • Secrets and environment variable management
  • HTTPS/TLS, CORS and secure communication
  • Hands-on: attacking and securing endpoints (Postman/Burp)

Outcome
Ability to design secure APIs and harden existing services.

Prerequisites
Understanding of REST APIs.

Target audience
Backend, fullstack and DevOps engineers.

Instructor
The training is conducted by an experienced consultant from The Better Software Initiative.

Practical information
Training language and study materials will be in English.

Køb adgang til arrangementet

Bliv medlem af PROSA

Som medlem af PROSA får du en lang række fordele, som bl.a.

  • Gratis kurser
  • Juridisk rådgivning
  • Faglige netværk
  • Gode bankaftaler og forsikringer

Læs mere