If Your APIs Could Talk
Featured Episode
Ep. 15 BOPLA-Driven API Security: Enforcing Process-Level Authorization for Threat Mitigation
APIs are a growing attack vector, exposing organizations to threats like unauthorized access, injection attacks, and abuse. Traditional access control models
struggle to enforce business-specific authorization, leading to security gaps. In episode 15 of If Your APIs Could Talk, we examine API3:2023, BOPLA (
All episodes
Date
Ep. 1 - The Importance of Storing Data in Your API Security Strategy
Menachem Perlman, Director Solutions Engineering
In an era where data breaches and cyber threats loom large, safeguarding sensitive information within APIs stands as a paramount concern for
organizations. Join us as Menachem Perlman, our Director of Solutions Engineering discusses the pivotal significance of secure data storage within API
Ep. 2 - What Drives API Security Compliance
Sean Boulter, Technical Solutions Engineering, API Security
Dive into the intricate realm of API Security Compliance with our second episode in our monthly series, If Your APIs Could Talk. As organizations strive to
meet stringent security standards, ensuring that APIs adhere to regulatory requirements becomes non-negotiable. In this session, our technical exper
Ep. 3 - The Importance of Data Tokenization Over Traditional Encryption
Sean Boulter, Technical Solutions Engineering, API Security and Joe Delsol, Technical Solutions Engineering, API Security
As the reliance on APIs continues to surge, so does the scale of security threats aimed at exploiting data vulnerabilities. These threats highlight the need for
effective data protection methods. Data tokenization and data encryption stand out as key techniques, each offering unique benefits and applications.
Ep. 4 - A Year in the Life of an API: Chronicles of Security Evolution
Eli Arkush, Solutions Engineering, API Security
Explore the lifecycle of an API with a focus on evolving security measures in episode 4 in the “If An API Could Talk” series. We will showcase how adopting a
strong API security program leads to many different lenses of visibility including discovery, risk audits, and behavioral detection. Gain insights through
Ep. 5 - Rise of AI Assisted API Attacks
Menachem Perlman, Director Solutions Engineering, API Security
Despite the complexity of algorithms and advanced security protocols, API security often fails to consider the sophisticated intersection of AI and API
security. We will bridge this gap in our upcoming episode, ""Rise of AI Assisted API Attacks,"" by highlighting how emerging AI technologies can be har
Ep. 6 - Monitor Right & Shift Left: Reshaping API security with Advanced Testing
Arseny Krupnik, Senior Product Manager, API Security
APIs are too often rushed into production without proper testing. This creates conflict between the economic demand for new business services and the
security requirements to protect these new services. Plus, developers and DevOps teams are the ones who often perform API security testing since it
Ep. 7 - Doubling Down on API Security
Edgar Ortiz, API Security Specialist, Akamai
If you've been wanting to double down on your API security strategy, now is the perfect time. Learn how you can locate legacy and undocumented APIs,
monitor traffic to eliminate vulnerabilities, and prevent attacks in real-time. We'll show you how to integrate robust security tests, uncover data policy
Ep. 8 - Anatomy of an API Attack: Insights from a Real-Life Breach
Marko Prudnikov, Senior Solutions Engineer at Akamai
In this episode of “If Your APIs Could Talk”, we will uncover intricate strategies used by cyber attackers through a real-life API breach, focusing on the
vulnerabilities that were exploited to manipulate a major retailer's loyalty program. Discover the significant impact of these attacks and the measures
Ep. 9 - Akamai API Security Native Connector Deep Dive
Sean Boulter, Senior Solutions Engineer, Akamai
In this "If Your APIs Could Talk" episode, we'll explore the Akamai API Security Native Connector feature. This new integration, built directly into our API
Security solution, enables companies to send a copy of their Akamai Connected Cloud traffic to our API Security solution for analysis with just a few cli
Ep. 10 – Workflow Automation Deep Dive
Alan Cota, Senior Solutions Engineer at Akamai
In this episode of "If Your APIs Could Talk," we explore the Workflow Automation feature of Akamai API Security. This feature dramatically improves efficiency
and productivity by simplifying the creation of multi-action workflows. It uses a user-friendly visual editor, customizable workflow samples, and over 3
Ep. 11 - Deep Dive into API Security Traffic Audit Capability
Andre Kerstens, Senior Solutions Engineer, Akamai
In this "If Your APIs Could Talk" episode, we'll explore the Traffic Audit feature of the Akamai API Security solution. We'll introduce participants to Traffic Audit's
powerful capabilities, including recording, visualizing, and analyzing API traffic within their environment. Traffic Audit allows users to easily identify and
Ep. 13 - From Code to Runtime: Akamai and Apiiro partnership
Patrick Sullivan, CTO, Security Strategy at Akamai Technologies, Akamai
In Episode 13 of If Your APIs Could Talk, we explore how Akamai and Apiiro are transforming API security through their powerful integration. By combining
Akamai’s API Security with Apiiro’s application security posture management (ASPM) platform, this partnership delivers unmatched visibility and prote
Ep. 14 - The Hidden Dangers of BOLA
Tyson Reed, Solutions Engineer, API Security
Imagine an attacker effortlessly accessing sensitive user data—simply by modifying an API request. In Episode 14 of If Your APIs Could Talk, we dig deep into
Broken Object Level Authorization (BOLA), the #1 API security risk in the OWASP API Security Top 10 (2023), allows just that. This webinar unpacks ho
Ep. 15 BOPLA-Driven API Security: Enforcing Process-Level Authorization for Threat Mitigation
API Security Team, Akamai
APIs are a growing attack vector, exposing organizations to threats like unauthorized access, injection attacks, and abuse. Traditional access control models
struggle to enforce business-specific authorization, leading to security gaps. In episode 15 of If Your APIs Could Talk, we examine API3:2023, BOPLA (