API Security for Mobile & Cloud
Event Registration Tabs
|
A best practices workshop for enterprises San Francisco |
|
Speakers:
- Caleb Sima, EIR, Andreessen Horowitz, CTO & Co-Founder of SPI Dynamics (now HP Security)
- Ken Owens, VP, Security and Virtualization Technologies, Savvis
- Scott Morrison, CTO, Layer 7 Technologies
More and more enterprises are looking at API publishing as a way of exposing their data to internal, partner and external developers building mobile apps and Cloud services. Publishing API's however raises questions about:
- How to maintain security when exposing internal data to external developers
- How existing IT investments can be leveraged to maximize performance and ROI
This workshop will provide insight into API security and management best practices for mobile and Cloud. Sessions include:
|
1:00pm |
Lunch |
|
2:00pm |
Open APIs: Enterprise Security Implications for Mobile & Cloud (Caleb Sima) |
|
2:30pm |
APIs in the Cloud & Their Security Implications (Ken Owens) |
|
3:00pm |
API Security & Management Best Practices (Scott Morrison) |
|
3:30pm |
Break |
|
3:45pm |
A How-to Guide for Securely Managing Your APIs |
|
|
Tutorial 1: Managing API Access Through OAuth |
.jpg)
| 1pm | Registration, Lunch & Networking |
| 2pm | Caleb Sima, EIR, Andreessen Horowitz |
| Open APIs: Enterprise Security Implications for Mobile & Cloud A look at what’s driving new Internet-facing organizations to open up information through APIs and the implications for application security. |
|
| 2:30pm | Ken Owens, VP, Security and Virtualization Technologies, Savvis |
| APIs in the Cloud & Their Security Implications A look at why APIs matter in the Cloud and their unique security challenges. |
|
| 3pm | Scott Morrison, CTO, Layer 7 Technologies |
| API Security & Management Best Practices A look at the high-level considerations for controlling, metering and monitoring APIs from test through to production. |
|
| 3:30pm | Break |
| 3:45pm | A How-to Guide for Securely Managing Your APIs |
| Tutorial 1: Managing API Access Through OAuth Tutorial 2: API Threat Protection & Metering Tutorial 3: Enabling API Discovery & Developer Self-Service – An API Developer Portal Example |
|
Speakers
Caleb Sima, EIR, Andreessen Horowitz
Caleb Sima is currently at one of the top Venture Capitalist firms in Silicon Valley, Andreessen Horowitz. Here he provides strategic insight as an EIR. Before joining Andreessen Horowitz, Caleb was most recently CEO of Armorize Technologies, an internationally-acclaimed, SaaS-based Web malware monitoring and code security analysis firm based in San Francisco. Prior to his tenure at Armorize, Caleb served as Chief Technology Officer for HP’s Application Security Center and was responsible for directing the lifecycle of the company’s Web application security solutions. He joined HP following the 2007 acquisition of SPI Dynamics, the company he co-founded and led as CTO, where he oversaw the development of WebInspect – a solution that set the bar in Web application security testing tools. Before co-founding SPI Dynamics in early 2000, Caleb worked for Internet Security Systems’ elite X-Force R&D team and as a Security Engineer for S1 Corporation.
Caleb has been engaged in the Internet security arena since 1996 and has become widely recognized as a leading expert in Web security, penetration testing and the identification of emerging security threats. His pioneering efforts and expertise in Web security have helped define the direction of the Web application security industry. Caleb is a member of ISSA and is one of the founding visionaries of the Application Vulnerability Description Language (AVDL) standard within OASIS, as well as a founding member of the Web Application Security Consortium (WASC). He is also a Microsoft Most Valuable Professional (MVP) in Visual Developer Security, a frequent speaker, press resource and is featured regularly in the Associated Press and global security media.
Ken Owens, VP, Security and Virtualization Technologies, Savvis
Ken Owens is Vice President of Security and Virtualization Technologies for Savvis. Ken’s role involves strategy, development and architecture for Cloud computing, security and virtualization technologies.
Prior to joining Savvis in 2006, Ken spent two years as a network security architect at A.G. Edwards & Sons, Inc. and Edward Jones brokerage firms in St. Louis, Mo. Before that, Ken worked 10 years in the design and architecture of communications systems and components for Erlang Technologies and Wiltel.
Ken holds bachelor’s and master’s degrees in electrical engineering from Missouri University of Science and Technology.
Scott Morrison, CTO, Layer 7 Technologies
Scott Morrison is the Chief Technology Officer and Chief Architect at Layer 7 Technologies, providing the company’s innovation vision and technical direction. He has gained extensive technical and scientific experience across industries, including as a senior architect at IBM. He is one of the four co-editors of the WS-I Basic Security Profile. Scott is a much sought-after author and speaker. He has published over 50 book chapters, magazine articles and papers in medical, physics and engineering journals. He has also spoken at more than 70 trade shows around the world, including the InfoWorld, JavaOne, GigaOm STRUCTURE, SOA World, Gartner and IDC conferences.