{"product_id":"9781484220504","title":"Advanced API Security: OAuth 2.0 and Beyond","description":"Prepare for the next wave of challenges in enterprise security. Learn to better protect, monitor, and manage your public and private APIs. \u003cbr\u003eEnterprise APIs have become the common way of exposing business functions to the outside world. Exposing functionality is convenient, but of course comes with a risk of exploitation. This book teaches you about TLS Token Binding, User Managed Access (UMA) 2.0, Cross Origin Resource Sharing (CORS), Incremental Authorization, Proof Key for Code Exchange (PKCE), and Token Exchange. Benefit from lessons learned from analyzing multiple attacks that have taken place by exploiting security vulnerabilities in various OAuth 2.0 implementations. Explore root causes, and improve your security practices to mitigate against similar future exploits. \u003cbr\u003eSecurity must be an integral part of any development project. This book shares best practices in designing APIs for rock-solid security. API security has evolved since the first edition of this book, and the growth of standards has been exponential. OAuth 2.0 is the most widely adopted framework that is used as the foundation for standards, and this book shows you how to apply OAuth 2.0 to your own situation in order to secure and protect your enterprise APIs from exploitation and attack. \u003cbr\u003e\u003cbr\u003e\u003cb\u003eWhat You Will Learn\u003c\/b\u003e\u003cul\u003e\n\u003cli\u003eSecurely design, develop, and deploy enterprise APIs\u003c\/li\u003e\n\u003cli\u003ePick security standards and protocols to match business needs\u003c\/li\u003e\n\u003cli\u003eMitigate security exploits by understanding the OAuth 2.0 threat landscape\u003c\/li\u003e\n\u003cli\u003eFederate identities to expand business APIs beyond the corporate firewall\u003c\/li\u003e\n\u003cli\u003eProtect microservices at the edge by securing their APIs\u003c\/li\u003e\n\u003cli\u003eDevelop native mobile applications to access APIs securely\u003c\/li\u003e\n\u003cli\u003eIntegrate applications with SaaS APIs protected with OAuth 2.0\u003c\/li\u003e\n\u003c\/ul\u003e\u003cbr\u003e\u003cb\u003eWho This Book Is For\u003c\/b\u003e\u003cbr\u003e\u003cbr\u003eEnterprise security architects who are interested in best practices around designing APIs. The book is also for developers who are building enterprise APIs and integrating with internal and external applications. \u003cbr\u003e","brand":"Apress","offers":[{"title":"Default Title","offer_id":46557580656881,"sku":"9781484220504","price":44.99,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0674\/5433\/7265\/files\/9781484220504_p0.jpg?v=1765489550","url":"https:\/\/shop.barnesandnoble.com\/products\/9781484220504","provider":"Barnes \u0026 Noble","version":"1.0","type":"link"}