API hacking is, unfortunately, part of the modern API landscape. Whenever you have resources exposed to the greater internet, those resources are going to be attacked in some way.
Thankfully, half of the fight is just being aware of the threats against your API. Read more
Unless you’ve been hiding under a rock, you probably have read a lot about data privacy in the headlines recently, specifically regarding the Facebook and Cambridge Analytica debacle. As reported by all major news outlets, the story goes that Cambridge Analytica harvested Facebook data through a quiz app that took the personal information from friends of users without knowledge or consent; an estimated 50 million Facebook accounts. Read more
Here’s an interesting fact: If you live in the EU your personal data is yours. You are the owner of your data, a fact enshrined in law under the General Data Protection Regulations (GDPR). As owners of data and citizens of many economies — internet, application, information, API — we have a myriad of tools and technologies available to mine, mash up, and generally manage our data as we see fit. Read more
A wide ranging set of rules to protect the data of citizens in member nations of the European Union was adopted in April. Known as the General Data Protection Regulation (GDPR), the measure’s goal is to replace the existing patchwork of national laws with a single modern regulation that reflects the digital age. Read more
In 2014, a working group reached consensus for v2.0 of SCIM — a simple yet powerful standard that more and more large digital organizations are beginning to adopt for cross-domain identity management. Just last month, the Internet took a leap forward in standardizing SCIM specifications, now officially published by the Internet Engineering Task Force as RFC7643 and RFC7644. Read more