APIDays London 2016: Balancing Speed and Safety

APIDays London 2016 focused on the impact of APIs in the Banking and Fintech industries. Speeding up IT and business development without sacrificing stability and safety is one of the major challenges faced by many organizations today. The challenge increases with the size of the organization, the requirements for safety, and the rate of change of the environment….

The View from #API360

It was my great pleasure to join our inaugural #api360 event in Washington, DC, Sept 12.  The Newseum was an ideal venue, offering a stunning cityscape view including the Capitol building and, of course, the Canadian Embassy.  The day kicked off with Gray Brooks of 18F giving an insider’s view of the widespread API activities taking place in the US Federal…

DFTW – Decoupled for the Win

Decouple your service and avoid fatal dependencies It doesn’t matter if your service is “micro” or “oriented”, if it’s tightly coupled – especially if your service is on the Web – you’re going to be stuck nursing your service (and all it’s consumer apps) through lots of pain every time each little change happens (e.g. addresses, operations, arguments, process-flow). And that’s just needless pain. Needless for you and for anyone attempting…

API Strategy 301: API-as-a-Product

Learn how positioning your APIs as products can contribute to success across all aspects of an API program In API Strategy Lesson 203: Building Business Value with a Framework for API Success, we outline key areas of focus essential to designing and maintaining an effective API program. In this lesson, we explain how positioning your APIs as products in themselves…

TechTalk: Common OAuth Security Mistakes and Threat Mitigations

With vulnerabilities recently surfacing in the OAuth implementations of popular service providers like Yammer, Instagram and Facebook, it’s hard to blame anyone for getting the impression that there are fundamental security flaws in the OAuth protocol. Francois Lascelles, Chief Architect at Layer7, answered OAuth questions live, discussed the common security mistakes made in OAuth implementations and explain how…

Scroll to top