Webinar

API Security in a Kubernetes World

February 18, 2021

Webinar Thumb Preview-1024x585px copy

Securing APIs deployed in Kubernetes implies securing the infrastructure, but also the APIs themselves. Having a perfectly setup cluster, with all possible protections in place, is only ONE aspect of the measures you need to take to prevent the vulnerabilities listed in the OWASP API Security Top 10. Other issues such as data leakage, mass assignment or broken authentication must be handled at the application level.

Although the OWASP API Security Top 10 list is not specific to Kubernetes, Kubernetes deployments created to run microservices-based, decoupled applications, increase the risk and the impact of API security problems just by the sheer number of APIs to manage and protect. In Kubernetes deployments, everything is an API. Enterprises end up having to protect 1000’s of endpoints, and to make it worse, those endpoints get re-deployed very frequently.

You may think you’re covered if you're using a service mesh, but services meshes policies only cover some aspects of security, mostly at communications level.

In this webinar, we will:

    • Explain the various security layers in a Kubernetes architecture and which approaches you can take to protect your APIs
    • Explain why it is important to defend APIs in depth, including internal APIs.
    • Demonstrate how the 42Crunch Micro-API Firewall can easily be injected in a Kubernetes deployment
    • Hopefully convince you that with hundreds of APIs to come, automation is your friend and you must put measures in place to discover security issues as early as possible!

Speaker

Isabelle Mauny
Isabelle Mauny

Field CTO and Co-founder

42Crunch

Watch the Webinar

Browse the Deck

Latest Resources

BLOG

How to Embed API Security Testing into the Development Lifecycle without Delaying Production Rollout

By Mark Dolan | September 19, 2023

This is the first in a 3-part series of blogs exploring how 42Crunch assists enterprises with API security compliance. In her seminal blogpost, “Shifting Security to the Left” Shannon Lietz explains how including security testing earlier in the development lifecycle makes for longer-lived and more resilient software. The principles she advocates for are also what guides us at 42Crunch..

NEWS

Payemoji and 42Crunch announce partnership

By Newsdesk | July 12, 2023

Dublin, Ireland – July 12, 2023 42Crunch, the automated API security testing and threat protection vendor and Payemoji’s conversational commerce solution announce partnership. Introduction to Conversational commerce API security Conversational commerce has transformed the way businesses engage with their customers. Through messaging platforms, voice assistants, and chatbots, companies […]

DataSheet

APIs are the core building block of every enterprise’s digital strategy, yet they are also the number one attack surface for hackers. 42Crunch makes developers’ and security practitioners' lives easier by protecting APIs, with a platform that automates security into the API development pipeline and gives full oversight of security policy enforcement at every stage of the API lifecycle.

Ready to Learn More?

Developer-first solution for delivering API security as code.