The largest IBM i-related conference event in the world, bringing together the community of users, IBM, industry experts and solution providers.
Back To Schedule
Thursday, April 27 • 2:45pm - 3:45pm
333: Strategies for Securing REST APIs

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

So you've used your favorite open-source package to create REST APIs, have deployed those APIs as part of microservices, and have all of those microservices set up to do load balancing. But you've neglected on thing: Security! This talk will focus on different strategies that developers can use to secure their API endpoints, such as using API keys and various token-based authentication methods. We will also cover the use of secure protocols like TLS and HTTPS, and the importance of logging for identifying potential attacks on your network. We will finish with a concrete example of securing REST APIs created with LoopBack, a Node.js Typescript framework for building APIs and microservices.

Learning Objectives:
1. Learn how to use API keys or tokens to secure API endpoints
2. Learn the importance of using secure protocols like TLS and HTTPS
3. Learn about different authentication strategies for protecting endpoints

avatar for Mark Irish

Mark Irish

Software Engineer, IBM
I am a software engineer at IBM working on open-source software enablement for the IBM i. I am particularly knowledgeable about Node.js and Machine Learning software libraries. Feel free to talk to me about your open-source questions and tell me what open-source software you'd like... Read More →

Thursday April 27, 2023 2:45pm - 3:45pm MDT
Governors Square 15
  • Session Level All
  • Audience This sessions is useful for developers and security administrators who are interested in REST APIs or want to learn how to secure their current REST APIs.