500 attendees from
0 1
WHAT IS APIDAYS?
“In 2008, API security was too important to let others do it for you. In 2018 API security is too important to do it yourself.”
APIdays is the leading industry tech and business series of conferences in APIs and the programmable economy.
15,000+ past attendees
36 events
1,350+ speakers
11 countries
Privacy, Security and Identity are the topics of the year. Equifax, India’s biometric database, Facebook's breach of trust, Tesla's cars, Apple iCloud, Snapchat/Snapsaved's hacks.... These scandals have been caused by a lack of API Security or an unsafe Identity Management. You can name them: DDoS, Cash overflow. MITM, Brute forcing non-rate-limited API endpoints, OAuth vulnerabilities, improper use of CORS, Cross-site request forgery (CSRF), flawed session management, too permissive OAuth scopes... You just need to be wrong once to get all your security efforts wasted. And in the context of the GDPR regulation, it can lead to a fine of 4% of your total revenue. All of these are API-driven practices and can be avoided with a good API management.
Welcome to the programmable web, where every interaction is designed to be automated, scalable. So are abuses and threats.
We gathered the best experts and companies on API security and Identity management to talk about how every app and every API should be secured and what is the state of the art of Access control & Access level management, Identity management and identity delegation with OpenIDConnect, User-Managed Access, and Blockchain based identity.
0 2
YOU HEARD FROM
03
AGENDA
AM
8:30
REGISTRATION AND BREAKFAST
PM
2:00
THE MANY FLAVORS OF OAUTH
Khor Soonhin
CTO at RingCaptcha and Oauth.io
9:00
WHO ARE YOU, REALLY? IDENTITY IN THE AGE OF WEAPONIZED DOUBT
David Chasteen
Chief Security Officer of the SFPD
2:20
"FORGOT PASSWORD, YES I DID."
Joel Lord
Developer Evangelist at Auth0
9:25
UNDERSTANDING COMPUTER SECURITY BY DEPLOYING HONEYPOTS
Sebastien Tricaud
Principal Security Strategist at Splunk
2:45
DESIGNING OAUTH FOR EASY INTEGRATION
Keith Casey
API at Okta
9:50
10:15
NEW TOOLS FOR COMPLIANCE & CONSENT IN A WORLD OF DATA PROTECTIONISM
Eve Maler
VP Innovation at Forgerock
3:05
MANAGING AUTHENTICATIONS IN THE BILLIONS
Kyle Marsh
Principal Program manager at Microsoft
3:25
THE RIGHT WAY TO 2FA: CORRECTLY IMPLEMENTING STRONGER AUTHENTICATION
Josh Staples
Solution Architect at Twilio
BREAK
10:40
BREAK
3:50
ADOPTING SECDEVOPS: A NEW APPROACH TO API SECURITY
Isabelle Mauny
CTO and Co-Founder at 42Crunch
11:05
USING DESIGN-FIRST APPROACH FOR DELIVERING BETTER API SECURITY
Emmanuel Paraskakis
VP Product Management at Apiary
4:15
BUILDING SECURE APIS: THE DEVELOPER’S POINT OF VIEW
Jean Baptiste Aviat
CTO at Sqreen
11:30
SECURING MICROSERVICES APIS
Scott Morrison
SVP Engineer at CA Technologies
4:35
MISBEHAVING APIS AND AI TO KEEP THEM IN CHECK
Renata Budko
CMO at Wallarm
11:55
THE NEW API SECURITY LAYERS
Nathanael Coffing
CEO of Cloudentity
5:00
PAST, PRESENT AND FUTURE OF API SECURITY
Bernard Harguindeguy
CEO & Founder at Elastic Beam (Ping)
12:20
ZERO TRUST API SECURITY PATTERNS
Kevin Paige
CISO at Mulesoft
5:20
THE FUTURE OF IDENTITY
Evelyn De Souza
Privacy and Security Strategy Consulting Leader
5:30
HAPPY HOUR
APIdays.io
July 2019 | San Francisco
0 5
INFO
ADDRESS:
To be announced
DATE:
July 2019
ATTENDANCE:
Information to be updated soon