API Academy

Sponsored by Layer7

Api academy certification logo

API Security Architect Certification

By Bill Oakes, CISSPPosted on

The new certification course for API Security Architect is now available. This is an in-depth, self-paced course, and by completing this course, you will be able to:

  • Explain the unique security risks of APIs and identify typical areas of API vulnerabilities 
  • Explain the purpose of OAuth 2.0 as a framework for authorization 
  • Describe the current challenges of OAuth 2.0 implementation
  • Describe OpenID Connect as an authentication layer and how it complements OAuth 2.0 
  • Summarize the general specifications of the current OpenID Connect protocol suite
  • Explain how JSON Web Tokens (JWT) work and the advantages and considerations of stateless tokens
  • Summarize common threat models for OAuth 2.0 and some ways to mitigate and overcome them

I invite you to continue on your API journey by becoming certified as an API Security Architect – and don’t forget to share your achievement on LinkedIn to let your colleagues know of your accomplishment!