Monday 10 Dec 17.30

My secure API secret sauce

After Work Seminar


APIs are today commonplace. They enable new, creative and innovative usages for our data. Unfortunately, APIs are not a security layer. Their primary purpose is to allow quick and easy access.

Luckily, there are many ways to add security. But with endless variations of methods and keys, it is not always easy to know what to do. Access keys, secret keys, shared keys, signing keys, hashed keys, one-time keys, and what-not-keys. What does it take to create a secure API? Is there a secret recipe? Any rituals? Or is it dumb luck?


Working for Softhouse as a software security expert Niclas Kjellin has designed secure systems for many companies and products. Over the years he realized that security does not happen by magic. Knowing when and where to focus the effort is half the work. However, he’s real mission is to help developers to understand the concepts of security and deliver better software.


17.30-17.45 Meet & Greet

17.45-18.30 Presentation

18.30-19.00 Meet & Eat

19.00-20.00 Q&A

Brought to you by:

Tags APIs security

Platinum Partners

Capish100px Axis100px Connectitude100px

Premium Partners

Mediaevolution100px Qlik100px Verisure100 Softhouse100px Oneagency100px Securelink100px Omegapoint100px Advenica horisontal 100x50 Tetrapak100x50 Knightec100 Kan 100x50 Boozt 100x50 Internetstiftelsen 100x50


Handelsbanken100px Thirdbase100px U blox100px Yrkesorange100px Tedkomp100px Stratiteq100pxbl Crosstech100px Purplescout100px Playtechbgt100px 24hr100px Schneider100px Tieto100pxnew Hotnew100px Ifacts logo partner 100px Odd hill 100x50 Terranet100px Bimobject100px Essiq100px Falconio100px Aveva 100x50 Humanit100px Avensia100px Relax100px Cybercom 100x50 Hittahem small Raygun100px Edument100px Pinmeto100px Livingit100 Lime color 100x50 Storytel100x50 Additude100x50 Q100x50 Nilex100x50 Upptec 100x50
Sign in