Season 1 · Episode 62

EP62 Protect Modern Applications in the Cloud: Union of APIs and Application Security

Cloud Security Podcast by Google · Anton A Chuvakin

April 25, 202227m 10s

Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.

Original episode page

Show Notes

Guest:

Etienne De Burgh, Senior Security and Compliance Specialist, Office of the CISO @ Google Cloud

Topics:

Why is API security hot now? What happened that made it a priority for many?
Is API security different from application security? Doesn't the first "A" in API stand for application?
What are the real threats to exposed APIs?
APIs are designed for automated use, so how do you tell automated use from automated abuse / attack?
What are the biggest challenges that companies are having with API security?
What are the components of API security? Is there a "secure by default API"? API threat detection?
Just like cloud in general, API misconfigurations seem to be leading to security problems, are APIs hard to configure securely for most organizations?

Resources:

Google Cloud Security Summit - come see us on May 17, 2022
"Securing web applications and APIs anywhere" (at our Security Summit)
OWASP Top 10 for API Security
"Best practices for securing your applications and APIs using Apigee"

← All episodes of Cloud Security Podcast by Google