It doesn’t exist,” she said. “It should be called API Insecurity because that is what it really is. We have to start thinking about security as a continuum and not just about the application itself but how we are using APIs in our applications and how they are being used by third parties who may or may not have malicious intent. The more we can think of security as a continuum, the better off we will be when it comes to implementing effective controls across that spectrum of use cases for our applications and APIs
https://t.co/llglBpZ1xL