Header Image

API Security for Mobile & Cloud

Event Registration Tabs

A best practices workshop for enterprises

 

San Francisco
February 27, 2012
1pm–5pm
Lunch Served. Limited Seating - Register Today

 

Following CSA Summit at RSA2012

 
 

Speakers:

  • Caleb Sima, EIR, Andreessen Horowitz, CTO & Co-Founder of SPI Dynamics (now HP Security)
  • Ken Owens, VP, Security and Virtualization Technologies, Savvis
  • Scott Morrison, CTO, Layer 7 Technologies

More and more enterprises are looking at API publishing as a way of exposing their data to internal, partner and external developers building mobile apps and Cloud services. Publishing API's however raises questions about:

  • How to maintain security when exposing internal data to external developers
  • How existing IT investments can be leveraged to maximize performance and ROI

This workshop will provide insight into API security and management best practices for mobile and Cloud. Sessions include:

1:00pm

Lunch

2:00pm

Open APIs: Enterprise Security Implications for Mobile & Cloud (Caleb Sima)

2:30pm

APIs in the Cloud & Their Security Implications (Ken Owens)

3:00pm

API Security & Management Best Practices (Scott Morrison)

3:30pm

Break

3:45pm

A How-to Guide for Securely Managing Your APIs

 

Tutorial 1: Managing API Access Through OAuth
Tutorial 2: API Threat Protection & Metering
Tutorial 3: Enabling API Discovery & Developer Self-Service – An API Developer Portal Example

 

The W Hotel
181 3rd Street
San Francisco, CA 94103

W Hotel Location

1pm Registration, Lunch & Networking
2pm Caleb Sima, EIR, Andreessen Horowitz
  Open APIs: Enterprise Security Implications for Mobile & Cloud
A look at what’s driving new Internet-facing organizations to open up information through APIs and the implications for application security.
2:30pm Ken Owens, VP, Security and Virtualization Technologies, Savvis
  APIs in the Cloud & Their Security Implications
A look at why APIs matter in the Cloud and their unique security challenges.
3pm Scott Morrison, CTO, Layer 7 Technologies
  API Security & Management Best Practices
A look at the high-level considerations for controlling, metering and monitoring APIs from test through to production.
3:30pm Break
3:45pm A How-to Guide for Securely Managing Your APIs
  Tutorial 1: Managing API Access Through OAuth
Tutorial 2: API Threat Protection & Metering
Tutorial 3: Enabling API Discovery & Developer Self-Service – An API Developer Portal Example
 

Speakers 

 

Caleb Sima
 

Caleb Sima, EIR, Andreessen Horowitz

Caleb Sima is currently at one of the top Venture Capitalist firms in Silicon Valley, Andreessen Horowitz. Here he provides strategic insight as an EIR. Before joining Andreessen Horowitz, Caleb was most recently CEO of Armorize Technologies, an internationally-acclaimed, SaaS-based Web malware monitoring and code security analysis firm based in San Francisco. Prior to his tenure at Armorize, Caleb served as Chief Technology Officer for HP’s Application Security Center and was responsible for directing the lifecycle of the company’s Web application security solutions. He joined HP following the 2007 acquisition of SPI Dynamics, the company he co-founded and led as CTO, where he oversaw the development of WebInspect – a solution that set the bar in Web application security testing tools. Before co-founding SPI Dynamics in early 2000, Caleb worked for Internet Security Systems’ elite X-Force R&D team and as a Security Engineer for S1 Corporation.

Caleb has been engaged in the Internet security arena since 1996 and has become widely recognized as a leading expert in Web security, penetration testing and the identification of emerging security threats. His pioneering efforts and expertise in Web security have helped define the direction of the Web application security industry. Caleb is a member of ISSA and is one of the founding visionaries of the Application Vulnerability Description Language (AVDL) standard within OASIS, as well as a founding member of the Web Application Security Consortium (WASC). He is also a Microsoft Most Valuable Professional (MVP) in Visual Developer Security, a frequent speaker, press resource and is featured regularly in the Associated Press and global security media.

  

  

Ken Owens, VP, Security and Virtualization Technologies, Savvis

Ken Owens is Vice President of Security and Virtualization Technologies for Savvis. Ken’s role involves strategy, development and architecture for Cloud computing, security and virtualization technologies.

Prior to joining Savvis in 2006, Ken spent two years as a network security architect at A.G. Edwards & Sons, Inc. and Edward Jones brokerage firms in St. Louis, Mo. Before that, Ken worked 10 years in the design and architecture of communications systems and components for Erlang Technologies and Wiltel.

Ken holds bachelor’s and master’s degrees in electrical engineering from Missouri University of Science and Technology.

 

Scott Morrison
 

Scott Morrison, CTO, Layer 7 Technologies

Scott Morrison is the Chief Technology Officer and Chief Architect at Layer 7 Technologies, providing the company’s innovation vision and technical direction. He has gained extensive technical and scientific experience across industries, including as a senior architect at IBM. He is one of the four co-editors of the WS-I Basic Security Profile. Scott is a much sought-after author and speaker. He has published over 50 book chapters, magazine articles and papers in medical, physics and engineering journals. He has also spoken at more than 70 trade shows around the world, including the InfoWorld, JavaOne, GigaOm STRUCTURE, SOA World, Gartner and IDC conferences.