Loading…
or to bookmark your favorites and sync them to your phone or calendar.
strong>API World: API Lifecycle [clear filter]
arrow_back View All Dates
Tuesday, November 5
 

12:00pm PST

PRO WORKSHOP (API): Copilot Powered Modulith Design for Micro Services
Tuesday November 5, 2024 12:00pm - 12:50pm PST
Renjith Ramachandran, BJs Wholesale Club, Senior Solutions Architect

This workshop explores the concept of moduliths, a hybrid architecture that combines the simplicity of monolithic systems with the flexibility and modularity of microservices. Moduliths enable the creation of a single deployable unit while maintaining a modular structure. The session will examine common pitfalls in modulith design and highlight best practices for building scalable and flexible systems.

In addition, the workshop will demonstrate how to use GitHub Copilot to streamline the design, development, and evolution of modern modular architectures. Copilot can accelerate development by providing intelligent code suggestions, generating unit and performance test cases.

 
Speakers
avatar for Renjith Ramachandran

Renjith Ramachandran

Senior Solutions Architect, BJS Wholesale
Renjith Ramachandran is a digital professional with over 18 years of experience, currently serving as a Senior Solutions Architect at BJs Wholesale Club. His expertise spans Retail, Finance,Telecom and Healthcare, with a focus on cloud integrations, microservices, DevOps, and full-stack... Read More →
Tuesday November 5, 2024 12:00pm - 12:50pm PST
CloudX -- Stage 1

12:00pm PST

OPEN WORKSHOP (API): API CTF: Learn the FUNdamentals of API Security
Tuesday November 5, 2024 12:00pm - 12:50pm PST
David Warburton, F5, Director, F5 Labs
Malcolm Heath, F5, Senior Threat Researcher


Join us for an exciting and educational Capture the Flag (CTF) event focused on API security, designed specifically for beginners! No prior experience with API security is required, making this an inclusive and welcoming environment for anyone eager to learn how APIs are commonly attacked — by doing the attacking themselves!
Participants will engage with a series of hands-on challenges aimed at teaching fundamental concepts of API security. You'll explore vulnerabilities often found in APIs and learn how attackers exploit these weak spots to compromise systems. Each challenge is designed to introduce you to core techniques used in the field of cybersecurity, guiding you step by step toward understanding how APIs work and where their security gaps lie.
This event is all about learning by doing, but don’t worry — you won’t be left to figure things out entirely on your own. While the focus is on self-discovery and problem-solving, the session will end with a detailed walk-through of all the challenges. So, even if you're unsure of how to solve a particular problem, you'll leave with valuable new skills and a deeper understanding of API security.
What to Expect:
  • A series of beginner-friendly CTF challenges that focus on API vulnerabilities.
  • No pressure, inclusive atmosphere where the goal is to learn, not compete.
  • Guidance on how to approach and solve common API security challenges.
  • A final walk-through session where the team demonstrates solutions for each challenge, so you'll understand the techniques used, even if you struggled to solve them on your own.
What to Bring:
  • Your own laptop. Most challenges can be solved using a standard web browser like Firefox or Chrome, but you’ll have an edge if you're able to run Python scripts or use tools like Postman, which can make testing APIs easier and more efficient.
While this event is geared toward beginners, having a basic understanding of HTTP requests and headers will be helpful but not essential. Don’t worry if you don’t have that background, as the walkthrough and explanations provided during the event will help bring you up to speed.
Whether you’re completely new to the world of API security or just looking to reinforce your understanding, this CTF game will be an engaging and fun way to dive into the subject. By the end of the session, you’ll leave with practical knowledge and the confidence to further explore API security on your own!
Speakers
avatar for Malcolm Heath

Malcolm Heath

Senior Threat Researcher, F5
Malcolm Heath is a Senior Threat Researcher with F5 Labs.  His career has included incident response, program management, penetration testing, code auditing, vulnerability research, and exploit development at companies both very large and very small. Prior to joining F5 Labs, he... Read More →
avatar for David Warburton

David Warburton

Director, F5 Labs, F5
Warburton is the director of threat research team, F5 Labs, has given talks around world, and appeared on TV, and industry podcasts. He is the author of several F5 Labs reports, and recently co-authored the SSL/TLS/HTTPS scanning devops tool ‘Cryptonice’ which helps organisations... Read More →
Tuesday November 5, 2024 12:00pm - 12:50pm PST
API World -- Workshop Stage B

1:00pm PST

PRO WORKSHOP (API): Developing APIs that Data Scientists Will Love
Tuesday November 5, 2024 1:00pm - 1:50pm PST
Ryan Day, CSBS, Advanced data scientist

This presentation will include practical tips for crafting APIs that data scientists and machine learning engineers will love, along with code examples using Python and the FastAPI framework.

Data scientists are not like your average software developer. They want to use your APIs, but they have some unique quirks. To make them happy, you need to understand their needs:
- Who are data scientists?
- What tasks do they perform with your APIs?
- What tools do they use?
- What features are important to them?

Ryan is the author of Hands-on APIs for AI and Data Science, coming in May 2025 from O'Reilly Publishing.
Speakers
avatar for Ryan Day

Ryan Day

Advanced Data Scientist, CSBS
Ryan Day is an advanced data scientist in the financial services industry. He is the author of the O’Reilly book Hands-on APIs for AI and Data Science that will be published in April 2025 (https://hands-on-api-book.com/)He is an AWS-certified solutions architect and member of the... Read More →
Tuesday November 5, 2024 1:00pm - 1:50pm PST
API World -- Workshop Stage A

3:00pm PST

PRO WORKSHOP (API): Crafting Consistent APIs at Scale: Embracing Linting & Reusable Models
Tuesday November 5, 2024 3:00pm - 3:50pm PST
Travis Gosselin, SPS Commerce, Distinguished Software Engineer

In an era where digital transformations drive business value, the importance of developing consistent, scalable, and robust APIs cannot be overstated. As teams expand and projects multiply, maintaining a unified API design can pose significant challenges. This presentation delves into the powerful combination of linting and reusable models as tools to navigate these challenges and ensure consistency across large-scale API designs.

We will explore API linting using the open-source Spectral project to enable teams to identify and rectify inconsistencies during design. In tandem we will navigate the need for reusable models, recognizing that the best specification is the one you don't have to write or lint at all! These two approaches not only facilitate the smooth integration of services but also foster collaboration across teams by providing a shared, consistent foundation.
Speakers
avatar for Travis Gosselin

Travis Gosselin

Distinguished Software Engineer, SPS Commerce
Travis is an accomplished software developer, architect, and speaker. A tech enthusiast and blogger, Travis finds his niche in architecting and working with teams to compose highly automated service-oriented systems both in the cloud and on-premise. Travis currently works as a Distinguished... Read More →
Tuesday November 5, 2024 3:00pm - 3:50pm PST
API World -- Workshop Stage A

4:00pm PST

PRO WORKSHOP (API): 10 Things You Hate About Your API Gateway
Tuesday November 5, 2024 4:00pm - 4:50pm PST
Scott McAllister, ngrok, Principal Developer Advocate

Diving into the world of API gateways often mirrors a rocky romance, full of high hopes dashed by frustrating challenges—from the enigmatic configurations that test our patience to security measures and scalability that flirt with our limits. Yet, in the heart of these frustrations lies the potential for a love story as we uncover strategies and workarounds that turn sour experiences sweet. This talk will take you on a swift journey from loathing to loving your API gateway, showcasing how our biggest grievances can transform into the very reasons we value using gateways when developing and deploying APIs.

 

Speakers
avatar for Scott McAllister

Scott McAllister

Principal Developer Advocate, ngrok
Scott McAllister is a Developer Advocate for ngrok. He has been building web applications in several industries for over a decade. Now he's helping others learn about a wide range of web and infrastructure technologies. When he's not coding, writing or speaking he enjoys long walks... Read More →
Tuesday November 5, 2024 4:00pm - 4:50pm PST
API World -- Workshop Stage A

5:00pm PST

PRO WORKSHOP (API): Need a Backend for Your Frontend?
Tuesday November 5, 2024 5:00pm - 5:50pm PST
Terje Woldseth, Softeria AS, CEO

Can you create your API-enabled backend with a no-code service?

Explore the opportunities provided by no-code/low-code providers to create POCs, MVPs and production-grade solutions.

Reduced cost and time-to-market vs. the flexibility of a homegrown backend.
Speakers
avatar for Terje Woldseth

Terje Woldseth

CEO, Softeria
CEO and founder at Softeria AS, CTO and founder at Twoday Avento AS, CTO and founder at Payex AS
Tuesday November 5, 2024 5:00pm - 5:50pm PST
API World -- Workshop Stage A
 

Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Filtered by Date - 
  • Talk Type
  • OPEN Session
  • PRO Session
  • PRO Workshop
  • Track or Conference
  • AI & ML (CloudX)
  • API Case Studies & Success Stories (API World)
  • API Design / Architecture (API World)
  • API Leadership Summit (API World)
  • API Ops & Scalability & Usability (DX) & Testing (API World)
  • API Program Management (API World)
  • API Security / Compliance (API World)
  • API World
  • API World: API Innovation
  • API World: API Lifecycle
  • API World: API Strategy
  • API World: Microservices World
  • API-First Development (API World)
  • APIs (Dev Innovation)
  • Automated Testing & Monitoring & Reporting (CloudX)
  • CI/CD (CloudX)
  • CI/CD / Deployment (API World)
  • Cloud Development Technologies (CloudX)
  • Cloud Development Technologies (Dev Innovation)
  • Cloud Infrastructure (CloudX)
  • Cloud Innovation (AI & Edge & etc) (CloudX)
  • Cloud Security (CloudX)
  • Cloud Talent & Skills (CloudX)
  • CloudX
  • CloudX: Cloud Architecture & Infrastructure
  • CloudX: Cloud Strategy Conference
  • CloudX: Cloud-Native Development
  • CloudX: DevOps Summit
  • Containers & Kubernetes (CloudX)
  • Deployment Strategies (CloudX)
  • Dev Innovation (CloudX)
  • Dev Innovation Summit
  • Developer Tools (Dev Innovation)
  • DevSecOps (CloudX)
  • Digital Acceleration (CloudX)
  • Edge Computing (CloudX)
  • Emerging APIs: AI & IoT & Blockchain & Web3 & XR (API World)
  • Expo Challenge
  • Future of Cloud-Native Computing (CloudX)
  • Hybrid & Multi-Cloud (CloudX)
  • Hybrid APIs & Low Code APIs (API World)
  • Industries: Open Banking & Healthcare & Retail (API World)
  • Infrastructure-as-Code (CloudX)
  • Integration Management (API World)
  • Leadership Lounge
  • Microservices Design & Architecture (API World)
  • Microservices Design (CloudX)
  • Microservices Management (CloudX)
  • Observability (CloudX)
  • OPEN Session
  • Platform Engineering (API World)
  • Programming Languages (Dev Innovation)
  • Roundtables
  • Service Mesh & Containers & Kubernetes (API World)
  • Sponsor Spotlight
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive