500 attendees from
WHAT IS APIDAYS?
“In 2008, API security was too important to let others do it for you. In 2018 API security is too important to do it yourself.”
APIdays is the leading industry tech and business series of conferences in APIs and the programmable economy.
Privacy, Security and Identity are the topics of the year. Equifax, India’s biometric database, Facebook's breach of trust, Tesla's cars, Apple iCloud, Snapchat/Snapsaved's hacks.... These scandals have been caused by a lack of API Security or an unsafe Identity Management. You can name them: DDoS, Cash overflow. MITM, Brute forcing non-rate-limited API endpoints, OAuth vulnerabilities, improper use of CORS, Cross-site request forgery (CSRF), flawed session management, too permissive OAuth scopes... You just need to be wrong once to get all your security efforts wasted. And in the context of the GDPR regulation, it can lead to a fine of 4% of your total revenue. All of these are API-driven practices and can be avoided with a good API management.
Welcome to the programmable web, where every interaction is designed to be automated, scalable. So are abuses and threats.
We gathered the best experts and companies on API security and Identity management to talk about how every app and every API should be secured and what is the state of the art of Access control & Access level management, Identity management and identity delegation with OpenIDConnect, User-Managed Access, and Blockchain based identity.
YOU HEARD FROM
REGISTRATION AND BREAKFAST
THE MANY FLAVORS OF OAUTH
CTO at RingCaptcha and Oauth.io
WHO ARE YOU, REALLY? IDENTITY IN THE AGE OF WEAPONIZED DOUBT
Chief Security Officer of the SFPD
"FORGOT PASSWORD, YES I DID."
Developer Evangelist at Auth0
UNDERSTANDING COMPUTER SECURITY BY DEPLOYING HONEYPOTS
Principal Security Strategist at Splunk
DESIGNING OAUTH FOR EASY INTEGRATION
API at Okta
NEW TOOLS FOR COMPLIANCE & CONSENT IN A WORLD OF DATA PROTECTIONISM
VP Innovation at Forgerock
MANAGING AUTHENTICATIONS IN THE BILLIONS
Principal Program manager at Microsoft
THE RIGHT WAY TO 2FA: CORRECTLY IMPLEMENTING STRONGER AUTHENTICATION
Solution Architect at Twilio
ADOPTING SECDEVOPS: A NEW APPROACH TO API SECURITY
CTO and Co-Founder at 42Crunch
USING DESIGN-FIRST APPROACH FOR DELIVERING BETTER API SECURITY
VP Product Management at Apiary
BUILDING SECURE APIS: THE DEVELOPER’S POINT OF VIEW
Jean Baptiste Aviat
CTO at Sqreen
SECURING MICROSERVICES APIS
SVP Engineer at CA Technologies
MISBEHAVING APIS AND AI TO KEEP THEM IN CHECK
CMO at Wallarm
THE NEW API SECURITY LAYERS
CEO of Cloudentity
PAST, PRESENT AND FUTURE OF API SECURITY
CEO & Founder at Elastic Beam (Ping)
ZERO TRUST API SECURITY PATTERNS
CISO at Mulesoft
THE FUTURE OF IDENTITY
Evelyn De Souza
Privacy and Security Strategy Consulting Leader
July 2019 | San Francisco