API quality and security are essential in software development, says Renato Losio. They are essential to access and process cloud, third party services. In this roundtable, we will discuss how, in general, we can as developers engineer to improve the quality and the security in our API design and management.
Table of contents
TranscriptBackground, & Journey to API Security and QualityAPI Quality and Security, the Starting PointThe Shift Left MindsetSecurity as a Consideration, from the Inception PhaseEncryption at Rest and Encryption in MotionSecurity Standards for APIsDifferences between Internal and External APIsEncryption, and API Security Best PracticesWhen It's Ok to Have Something Less SecureWhy Security Practices are Sometimes Not EnforcedQuality That Is Not Security RelatedAPI Gateways vs. Service MeshRisk ScoringAuthorization Mechanisms in OpenAPIOpenAPI SpecsHow to Drive Open Standards in the Software Development LifecycleGetting Started on Learning the API StandardsAPI Testing, Beyond Rule CheckingBeing Proactive On Threat Detection and Securing External APIsPreferred API Security ApproachesThe Adoption Curve of API Quality and SecurityShort-term, Practical Action Items on API Best PracticesSort: