API Security isn’t easy. Should I use OAuth? OpenID Connect? JWT? SAML? Opaque tokens? Signatures? HMAC? Should authentication and authorization be different for “external” versus “internal” APIs? What are the different schemes I should consider when allowing access to my APIs and how do I choose? Beyond designed-in API Security, what should I be thinking about for run-time monitoring?
This session explores different options, standards, and tools for securing your APIs and how you can apply them in your enterprise.
Speakers: Dino Chiesa, Greg Kuelgen
Watch more:
Google Cloud Next ’20: OnAir → [ Ссылка ]
Subscribe to the GCP Channel → [ Ссылка ]
#GoogleCloudNext
API204
event: Google Cloud Next 2020; re_ty: Publish; product: Cloud - General; fullname: Dino Chiesa, Greg Kuelgen;
![](https://i.ytimg.com/vi/NtAnyDJhkkg/maxresdefault.jpg)