Advanced API Security

 

Advanced API Security is a complete reference to the next wave of challenges in enterprise security–securing public and private APIs. API adoption in both consumer and enterprises has gone beyond predictions. It has become the ‘coolest’ way of exposing business functionalities to the outside world. Both your public and private APIs, need to be protected, monitored and managed. Security is not an afterthought, but API security has evolved a lot in last five years. The growth of standards, out there, has been exponential. Continue reading “Advanced API Security” »

XSS Attacks: Cross Site Scripting Exploits and Defense

 

Cross Site Scripting Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. A Continue reading “XSS Attacks: Cross Site Scripting Exploits and Defense” »