API Security Roundtable: Lessons Learned in API Security

Presented at Black Hat USA 2014, Aug. 6, 2014, 10:15 a.m. (60 minutes).

This Roundtable will focus on security considerations inherent when supporting or building any number of APIs. Participants will share practical information on what approaches have worked and what haven't in their environments. Additionally, this Roundtable will cover techniques for secure design principles, instrumentation, and attack detection.


Presenters:

  • Zane Lackey - Signal Sciences
    Zane Lackey is the Founder/CSO at Signal Sciences and serves on the Advisory Boards of the Internet Bug Bounty Program and the US State Department-backed Open Technology Fund. Prior to Signal Sciences, Zane was the Director of Security Engineering at Etsy and a Senior Security Consultant at iSEC Partners. He has been featured in notable media outlets such as the BBC, Associated Press, Forbes, Wired, CNET, Network World, and SC Magazine. A frequent speaker at top industry conferences, he has presented at BlackHat, RSA, USENIX, Velocity, Microsoft BlueHat, SANS, OWASP, QCon, and has given invited lectures at NYU, UC Davis, and Reykjavik University. He is a contributing author of Mobile Application Security (McGraw-Hill), a co-author of Hacking Exposed: Web 2.0 (McGraw-Hill), and a contributing author/technical editor of Hacking VoIP (No Starch Press). He holds a Bachelor of Arts in Economics with a minor in Computer Science from the University of California, Davis.

Links:

Similar Presentations: