Policy’s role in authorization, XACML today, & OpenID’s new policy charter Listen to the podcast  

Axiomatics’ Experts Gerry Gebel and Jonas Iggbom Present “API Security: When OAuth Is Not Enough” at API World 2018

Axiomatics’ Experts Address the Inherent Limitations of OAuth by Augmenting Access Control with Fine-Grained Authorization

CHICAGO – September 4, 2018 – Axiomatics, the leader in externalized, fine-grained dynamic authorization, today announced that Gerry Gebel, vice president of business development and Jonas Iggbom, vice president of sales engineering, will speak at API World 2018. The Conference will take place September 10-12, 2018 at the San Jose Convention Center in San Jose, California.

According to the organizers, “API World is the first large-scale conference and expo with the goal of organizing the new API economy.” Attendees will gain valuable connections, knowledge, trust and business within the developer community of API providers and consumers. In addition, they will have the opportunity to connect with thousands of API consumers and hundreds of tech companies interested in forming integration partnerships.

Gebel and Iggbom will take the stage on Tuesday, September 11, 2018, from 10-10:50 PST, to present “API Security: When OAuth Is Not Enough.” The presentation will highlight where using only OAuth or OpenID Connect can lead to longer development cycles, more complex API code, and less access governance. These limitations can be addressed by adding in the complementary functionality of the Attribute Based Access Control (ABAC) method.

“APIs and microservices have revolutionized the way businesses exchange data and now lead the way for modern application development. However, APIs that handle sensitive data pose significant security challenges for developers,” said Gebel. “OAuth is a well-known and widely used permissions approach, but it’s not always enough. Our session will demonstrate how to address the inherent limitations of OAuth by augmenting access control with fine-grained authorization delivered with ABAC.”

There are many common needs that can be tackled with fine-grained authorization for APIs – spanning from the need to expose data via APIs securely (where secure collaboration is paramount) and to remove the need to re-code individual APIs when corporate policies change. With ABAC implemented, API development cycles improve in speed and efficiency, enforce policy-based authorization aligned with business rules and easily extend the authorization capabilities of an API gateway enterprise-wide.

“With such a large and diverse attendance list, API World is the perfect place for attendees, industry experts and thought leaders to familiarize themselves with and discuss the latest in API technologies,” said Iggbom. “I look forward to discussing how ABAC, OAuth and OpenID Connect standards can work together to provide a more comprehensive security formula than OAuth alone.”

API World attendees include executives, engineers, developers and integration partners that are looking to connect, learn, network, and build great applications with API providers.

For more information about Axiomatics, visit https://axiomatics.com. To learn more about API World 2018, visit http://apiworld.co. Follow the API World conversation on Twitter by using the hashtag #APIWorld18.

About Axiomatics 
Axiomatics is the leading provider of fine-grained access control. Axiomatics’ solutions are utilized by government agencies and Global Fortune 1000 companies around the world to enable digital transformation: share and safeguard sensitive information, meet compliance requirements and minimize data fraud. Axiomatics provides Attribute Based Access Control (ABAC) for applications, databases, Big Data, APIs and microservices. To learn more, please visit https://axiomatics.com or @axiomatics.

Samantha Berno

Media Contact

Samantha Berno
Corporate Communications Manager

Archived under: