Monday 10 Dec 17.30

My secure API secret sauce

After Work Seminar


APIs are today commonplace. They enable new, creative and innovative usages for our data. Unfortunately, APIs are not a security layer. Their primary purpose is to allow quick and easy access.

Luckily, there are many ways to add security. But with endless variations of methods and keys, it is not always easy to know what to do. Access keys, secret keys, shared keys, signing keys, hashed keys, one-time keys, and what-not-keys. What does it take to create a secure API? Is there a secret recipe? Any rituals? Or is it dumb luck?


Working for Softhouse as a software security expert Niclas Kjellin has designed secure systems for many companies and products. Over the years he realized that security does not happen by magic. Knowing when and where to focus the effort is half the work. However, he’s real mission is to help developers to understand the concepts of security and deliver better software.


17.30-17.45 Meet & Greet

17.45-18.30 Presentation

18.30-19.00 Meet & Eat

19.00-20.00 Q&A

Brought to you by:

Tags APIs security

Platinum Partners

Capish100px Axis100px Connectitude100px

Premium Partners

Mediaevolution100px Qlik100px Webstep logo 100x50 Verisure100 Playtechbgt100px Oneagency100px Neo4j 100px Edument100px Securelink100px Omegapoint100px Advenica horisontal 100x50 Tetrapak100x50 Knightec100


Handelsbanken100px Thirdbase100px U blox100px Yrkesorange100px Oddhill100px Tedkomp100px Stratiteq100pxbl Crosstech100px Purplescout100px Servicewell 100x50 24hr100px Softhouse100px Schneider100px Tieto100pxnew Hotnew100px Ifacts logo partner 100px Pinmeto100px Terranet100px Bimobject100px Essiq100px Falconio100px Aveva 100x50 Humanit100px Avensia100px Relax100px Cybercom 100x50 Hittahem small Additude100x50 Forefront 100x50 Raygun100px Livingit100 Lime color 100x50
Sign in