rest api security
play

REST API Security Jamie Wallace EBSCO LearningExpress Physics 25 - PowerPoint PPT Presentation

REST API Security Jamie Wallace EBSCO LearningExpress Physics 25 Years in Software Director of Software Development What is REST? Security? Solutions Implementation What is REST? Security? Solutions Implementation What is REST?


  1. REST API Security Jamie Wallace EBSCO LearningExpress

  2. Physics 25 Years in Software Director of Software Development

  3. What is REST? Security? Solutions Implementation

  4. What is REST? Security? Solutions Implementation

  5. What is REST? Security? Solutions Implementation

  6. What is REST? Security? Solutions Implementation

  7. REST

  8. RE presentational S tate T ransfer

  9. CRUD HTTP verbs using

  10. most web services only use an API key

  11. Request Request Request Validator API Key

  12. Request Validator API Key

  13. Validator API Request Key

  14. Validator API Request

  15. Client Server Side Side

  16. Authorized client Valid and unmodified request No replay attacks All users

  17. Authorized client Valid and unmodified request No replay attacks All users

  18. Authorized client Valid and unmodified request No replay attacks All users

  19. Authorized client Valid and unmodified request No replay attacks All users

  20. Domain Cookie Solution Time based One Time Password JSON Web Token

  21. SessionID Header Validator API Request SessionID Cookie

  22. SessionID Header Request Validator API SessionID Cookie

  23. SessionID Header Validator API Request SessionID Cookie

  24. Validator API Request

  25. Single Multiple Domain Domain

  26. SessionID Header Validator API Request SessionID Cookie

  27. Domain Cookie Solution Time based One Time Password JSON Web Token

  28. Time Periods HMAC Key

  29. Time Periods HMAC Key TOTP

  30. HMAC Key Ç TOTP

  31. Request Validator API TOTP

  32. Request Validator API TOTP

  33. Validator API Request TOTP

  34. Validator API Request

  35. Domain Cookie Solution Time based One Time Password JSON Web Token

  36. Header Payload HMAC Key

  37. Signature Payload Header Signature HMAC Key

  38. Signature Payload Header HMAC Key

  39. Request Validator API JWT

  40. Request Validator API JWT

  41. Validator API Request JWT

  42. Validator API Request

  43. Application Fingerprint

  44. JWT with Signature Service

  45. TS TS Key String 10 115ABC 20 115DEF 30 115GHI HMAC

  46. TS TS Key 10 115ABC 20 115DEF 30 String 115GHI HMAC

  47. TS TS Key 10 115ABC 20 115DEF 30 String 115GHI HMAC Hash

  48. Encrypting JWT with Encryption Service

  49. TS TS Key String 10 115ABC 20 115DEF 30 115GHI HMAC

  50. TS TS Key 10 115ABC 20 115DEF 30 String 115GHI HMAC

  51. TS TS Key 10 115ABC 20 115DEF 30 Encrypted String 115GHI HMAC or Decrypted String

  52. Client Manager Validator Encryption Service Signature Service Key Store

  53. Client Manager Validator Encryption Service Signature Service Key Store

  54. Client Manager Validator Encryption Service Signature Service Key Store

  55. Client Manager Validator Encryption Service Signature Service Key Store

  56. Client Manager Validator Encryption Service Signature Service Key Store

  57. Q & A

Recommend


More recommend