With the number of APIs increasing constantly right along with the number of cyber attacks, API security has never been so important to success in an enterprise. This Meetup will be a co-presentation from Big Compass and PingIntelligence by Ping Identity. We will dive into how API security works with MuleSoft including the API development lifecycle and implementing security policies on a live API from Anypoint Platform API Manager. We will display the monitoring capabilities from API Manager and what a policy violation might look like.
Then, we will have some fun by simulating hacks on our own API. We will simulate some common attacks and how API Manager and/or a WAF can block these common attacks.
From there, we will dive even deeper by simulating very advanced attacks like OAuth token hijacking, data theft, and DoS attacks that fly under the SLA radar. This is where we will implement PingIntelligence’s Anypoint integration custom API policy, show how a MuleSoft API can connect with PingIntelligence, and how PingIntelligence uses AI to discover and model normal behavior on learn about your APIs to prevent and report on advanced attacks and instruct Anypoint to stop these requesters.
Technology Alliances Manager And API Security Evangelist
Aaron’s passion for technology and for enriching connectivity between people and between systems drives him to find innovative ways to help advance organizations through technology. Aaron is a MuleSoft Practice Manager and Lead Consultant at Big Compass and has rich experience in a variety of integration environments. Aaron has led various implementations as a developer, architect, and development manager, so he brings the perspective of each role to every project to align people around a common goal. Aaron is also a Denver MuleSoft Meetup organizer where he brings people together from the Denver area to create a community and enhance collaboration. This platform allows him to engage the local community and beyond to spread knowledge and thought leadership while connecting people and ideas.
Tyler is Ping Identity’s resident API security evangelist and technology alliances manager. Tyler came to Ping via acquisition of Elastic Beam where he was the head of global sales and took the AI cybersecurity company out of stealth. Prior to that Tyler helped build the go-to-market strategy and bring new products to market for numerous early stage technology companies from the Virtual Desktop Infrastructure (VDI) space to the test automation world. Tyler is an aspiring technology ethicist and has a degree in Entrepreneurship and Philosophy from Elon University where he serves on the advisory board for the Innovation Council.