{"course":{"productid":36452,"modality":1,"active":true,"language":"en","title":"API security in C#","productcode":"ASIC","vendorcode":"CY","vendorname":"Cydrill","fullproductcode":"CY-ASIC","courseware":{"has_ekit":false,"has_printkit":true,"language":""},"url":"https:\/\/portal.flane.ch\/course\/cydrill-asic","objective":"<ul>\n<li>Getting familiar with essential cyber security concepts<\/li><li>Understanding API security issues<\/li><li>Detailed analysis of the OWASP API Security Top Ten elements<\/li><li>Putting API security in the context of C#<\/li><li>Going beyond the low hanging fruits<\/li><li>Managing vulnerabilities in third party components<\/li><li>Input validation approaches and principles<\/li><\/ul>","essentials":"<p>General C# development<\/p>","audience":"<p>C# API developers<\/p>","contents":"<ul>\n<li>Cyber security basics<\/li><li>OWASP API Security Top Ten<\/li><li>API1 - Broken Object Level Authorization<\/li><li>API2 - Broken Authentication<\/li><li>API3 - Broken Object Property Level Authorization<\/li><li>API4 - Unrestricted Resource Consumption<\/li><li>API5 - Broken Function Level Authorization<\/li><li>API6 - Unrestricted Access to Sensitive Business Flows<\/li><li>API7 - Server Side Request Forgery<\/li><li>API8 - Security Misconfiguration<\/li><li>API9 - Improper Inventory Management<\/li><li>API10 - Unsafe Consumption of APIs<\/li><li>Wrap up<\/li><\/ul>","summary":"<p>Your application written in C# works as intended, so you are done, right? But do your APIs behave well for incorrect values? 16Gbs of data? A null? An apostrophe? Negative numbers, or specifically -1 or -2^31? Because these are the values the bad guys will feed in &ndash; and the list is far from complete.<\/p>\n<p>The course provides a comprehensive walkthrough on the OWASP API Security Top Ten, equipping developers, security professionals, and architects with the knowledge to identify, mitigate, and prevent the most critical security risks in modern API-driven applications. Each of the ten risks &ndash; including Broken Object, Property and Function Level Authorization (BOLA, BOPLA and BFLA), Unrestricted Resource Consumption, Unsafe Consumption of APIs, and more &ndash; are discussed in detail with real-world examples, hands-on labs, and mitigation strategies. Topics are discussed in the context of classic APIs, rest APIs as well as GraphQL.<\/p>\n<p>Beyond the top ten list, the course can also expand into further key security topics that are crucial for developers but often overlooked in API security, such as cryptography, integer overflows, and code quality.<\/p>\n<p>Whether you are a beginner in API security or an experienced developer looking to sharpen your skills, this course offers valuable knowledge to build APIs that are not only functional and efficient but also secure and resilient.<\/p>\n<p>So that you are prepared for the forces of the dark side.<\/p>\n<p>So that nothing unexpected happens.<\/p>\n<p>Nothing.<\/p>","objective_plain":"- Getting familiar with essential cyber security concepts\n- Understanding API security issues\n- Detailed analysis of the OWASP API Security Top Ten elements\n- Putting API security in the context of C#\n- Going beyond the low hanging fruits\n- Managing vulnerabilities in third party components\n- Input validation approaches and principles","essentials_plain":"General C# development","audience_plain":"C# API developers","contents_plain":"- Cyber security basics\n- OWASP API Security Top Ten\n- API1 - Broken Object Level Authorization\n- API2 - Broken Authentication\n- API3 - Broken Object Property Level Authorization\n- API4 - Unrestricted Resource Consumption\n- API5 - Broken Function Level Authorization\n- API6 - Unrestricted Access to Sensitive Business Flows\n- API7 - Server Side Request Forgery\n- API8 - Security Misconfiguration\n- API9 - Improper Inventory Management\n- API10 - Unsafe Consumption of APIs\n- Wrap up","summary_plain":"Your application written in C# works as intended, so you are done, right? But do your APIs behave well for incorrect values? 16Gbs of data? A null? An apostrophe? Negative numbers, or specifically -1 or -2^31? Because these are the values the bad guys will feed in \u2013 and the list is far from complete.\n\nThe course provides a comprehensive walkthrough on the OWASP API Security Top Ten, equipping developers, security professionals, and architects with the knowledge to identify, mitigate, and prevent the most critical security risks in modern API-driven applications. Each of the ten risks \u2013 including Broken Object, Property and Function Level Authorization (BOLA, BOPLA and BFLA), Unrestricted Resource Consumption, Unsafe Consumption of APIs, and more \u2013 are discussed in detail with real-world examples, hands-on labs, and mitigation strategies. Topics are discussed in the context of classic APIs, rest APIs as well as GraphQL.\n\nBeyond the top ten list, the course can also expand into further key security topics that are crucial for developers but often overlooked in API security, such as cryptography, integer overflows, and code quality.\n\nWhether you are a beginner in API security or an experienced developer looking to sharpen your skills, this course offers valuable knowledge to build APIs that are not only functional and efficient but also secure and resilient.\n\nSo that you are prepared for the forces of the dark side.\n\nSo that nothing unexpected happens.\n\nNothing.","version":"1.0","duration":{"unit":"d","value":3,"formatted":"3 days"},"pricelist":{"List Price":{"DE":{"country":"DE","currency":"EUR","taxrate":19,"price":2250},"SI":{"country":"SI","currency":"EUR","taxrate":20,"price":2250},"AT":{"country":"AT","currency":"EUR","taxrate":20,"price":2250},"SE":{"country":"SE","currency":"EUR","taxrate":25,"price":2250},"CH":{"country":"CH","currency":"CHF","taxrate":8.1,"price":2250}}},"lastchanged":"2025-10-29T08:56:21+01:00","parenturl":"https:\/\/portal.flane.ch\/swisscom\/en\/json-courses","nexturl_course_schedule":"https:\/\/portal.flane.ch\/swisscom\/en\/json-course-schedule\/36452","source_lang":"en","source":"https:\/\/portal.flane.ch\/swisscom\/en\/json-course\/cydrill-asic"}}