Loading…
Subject: API Security (API World) clear filter
Wednesday, September 3
 

2:00pm PDT

PRO WORKSHOP (API): API Security for the AI Era: Detecting and Preventing Adversarial Manipulation
Wednesday September 3, 2025 2:00pm - 2:50pm PDT
API World -- Workshop Stage A (PRO)
David vonThenen, NetApp, AI/ML Engineer

In a digital landscape dominated by APIs and AI, security threats from adversarial manipulation have become critical risks. This session explores the intersection of APIs, AI security, and adversarial attacks. We'll dissect how adversaries manipulate APIs feeding data to machine learning models—by injecting noise, crafting misleading inputs, and exploiting data obfuscation techniques—to compromise model integrity and security. Attendees will gain insights into real-world adversarial scenarios, learn practical defensive techniques, and understand the implications for privacy, model fairness, and data reliability.

The session will provide practical examples and live demonstrations showcasing how adversarial strategies can exploit API vulnerabilities to undermine AI models. We'll examine defensive frameworks and best practices for securing APIs against adversarial attacks, ensuring data integrity, maintaining privacy compliance, and reinforcing ethical AI usage. By the end, attendees will be equipped with strategies for hardening their AI-driven APIs, proactively identifying vulnerabilities, and deploying robust security measures to mitigate adversarial threats.
Speakers
avatar for David vonThenen

David vonThenen

Senior AI/ML Engineer, NetApp
David is a Senior AI/ML Engineer at NetApp, where he’s dedicated to empowering developers to build, scale, and deploy AI/ML models in production. He brings deep expertise in building and training models for applications like NLP, data visualization, and real-time analytics. His... Read More →
Wednesday September 3, 2025 2:00pm - 2:50pm PDT
API World -- Workshop Stage A (PRO)
  API World

3:00pm PDT

PRO WORKSHOP (API): Fight or Flight: Your API Strategy for Agentic AI and MCP in 2025
Wednesday September 3, 2025 3:00pm - 3:50pm PDT
API World -- Workshop Stage A (PRO)
Brenton House, IBM, Principal Cybersecurity

In the fast-moving world of AI and APIs, Model Context Protocol (MCP) is set to redefine how we integrate with AI systems. This is especially true for agentic AI, which relies on autonomous interactions with APIs to make decisions and take actions.

But with great power comes great responsibility. APIs, long the unsung hero behind AI's rise, now face unprecedented demands for security, scalability, and adaptability. Don't miss this special session with Brenton House where he presents a practical API survival guide for 2025, packed with MCP updates and actionable strategies to keep your API and AI initiatives ahead of the curve.
Speakers
avatar for Brenton House

Brenton House

Principal Cybersecurity, IBM
Brenton House is an ex-hacker, developer, strategist, and now Principal Cybersecurity and AI Advisor for IBM webMethods. Known for his unique creative work and YouTube channel, Brenton has produced several hit series including The Redacted Hacker, AI: Man vs. Machine, and API Cybersecurity... Read More →
Wednesday September 3, 2025 3:00pm - 3:50pm PDT
API World -- Workshop Stage A (PRO)
  API World

4:00pm PDT

PRO WORKSHOP (API): API Underworld: Red Team Hacking Secrets
Wednesday September 3, 2025 4:00pm - 4:50pm PDT
API World -- Workshop Stage A (PRO)
Parth Shukla, Cequence Security, Security Analyst

This comprehensive workshop is designed to provide participants with a deep understanding of API security, its challenges, and best practices to mitigate risks. Spanning six engaging sessions, the program begins with an introduction to API security and real-world breaches, highlighting the critical importance of securing APIs.

Participants will explore reconnaissance techniques, including using tools like Shodan and Google Dorking, to identify API endpoints. The workshop delves into common API vulnerabilities, such as SQL Injection and XSS, complemented by practical hands-on scanning with Burp Suite.

Additionally, the sessions cover OSINT (Open Source Intelligence) techniques with tools like Maltego, theHarvester, and Wayback, empowering attendees to gather intelligence on API targets. The program culminates with guided vulnerability exploitation exercises and a collaborative group activity to identify and exploit API flaws.

Concluding with a wrap-up session and an open Q&A, this workshop equips participants with the knowledge and skills to secure APIs effectively while fostering a hands-on learning environment
Speakers
avatar for Parth Shukla

Parth Shukla

Security Analyst, Cequence Security
Parth Shukla is a dedicated Cybersecurity Analyst at Cequence Security with a strong passion for Web Application Security. He is an accomplished bug hunter, community builder, and cybersecurity enthusiast with a relentless drive to uncover vulnerabilities and share knowledge. Parth’s... Read More →
Wednesday September 3, 2025 4:00pm - 4:50pm PDT
API World -- Workshop Stage A (PRO)
  API World
 
Thursday, September 4
 

3:00pm PDT

PRO Session (API): Security APIs That Secure APIs
Thursday September 4, 2025 3:00pm - 3:25pm PDT
API World -- Workshop Stage A (PRO)
Jayson DeLancey, Semgrep, Head of Developer Relations

Semgrep is a fast, open-source, static code analysis engine with support for 30+ programming languages.

We'll look at some of the patterns for how developers might introduce vulnerabilities when building APIs.
Speakers
avatar for Jayson DeLancey

Jayson DeLancey

Head of Developer Relations, Semgrep
Jayson is a manager for the Resources Working Group of the Developer Relations Foundation and is Head of Developer Relations for Semgrep, an open-source static code analysis tool.Prior to Semgrep, he worked in a wide variety of industries and leadership roles including with Dolby... Read More →
Thursday September 4, 2025 3:00pm - 3:25pm PDT
API World -- Workshop Stage A (PRO)
  API World
 
Wednesday, September 10
 

11:00am PDT

[Virtual] PRO WORKSHOP (API): API Security for the AI Era: Detecting and Preventing Adversarial Manipulation
Wednesday September 10, 2025 11:00am - 11:50am PDT
VIRTUAL API World -- Workshop Stage A (PRO)
David vonThenen, NetApp, AI/ML Engineer

In a digital landscape dominated by APIs and AI, security threats from adversarial manipulation have become critical risks. This session explores the intersection of APIs, AI security, and adversarial attacks. We'll dissect how adversaries manipulate APIs feeding data to machine learning models—by injecting noise, crafting misleading inputs, and exploiting data obfuscation techniques—to compromise model integrity and security. Attendees will gain insights into real-world adversarial scenarios, learn practical defensive techniques, and understand the implications for privacy, model fairness, and data reliability.

The session will provide practical examples and live demonstrations showcasing how adversarial strategies can exploit API vulnerabilities to undermine AI models. We'll examine defensive frameworks and best practices for securing APIs against adversarial attacks, ensuring data integrity, maintaining privacy compliance, and reinforcing ethical AI usage. By the end, attendees will be equipped with strategies for hardening their AI-driven APIs, proactively identifying vulnerabilities, and deploying robust security measures to mitigate adversarial threats.
Speakers
avatar for David vonThenen

David vonThenen

Senior AI/ML Engineer, NetApp
David is a Senior AI/ML Engineer at NetApp, where he’s dedicated to empowering developers to build, scale, and deploy AI/ML models in production. He brings deep expertise in building and training models for applications like NLP, data visualization, and real-time analytics. His... Read More →
Wednesday September 10, 2025 11:00am - 11:50am PDT
VIRTUAL API World -- Workshop Stage A (PRO)
  API World

12:00pm PDT

[Virtual] PRO WORKSHOP (API): Fight or Flight: Your API Strategy for Agentic AI and MCP in 2025
Wednesday September 10, 2025 12:00pm - 12:50pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
Brenton House, IBM, Principal Cybersecurity

In the fast-moving world of AI and APIs, Model Context Protocol (MCP) is set to redefine how we integrate with AI systems. This is especially true for agentic AI, which relies on autonomous interactions with APIs to make decisions and take actions.

But with great power comes great responsibility. APIs, long the unsung hero behind AI's rise, now face unprecedented demands for security, scalability, and adaptability. Don't miss this special session with Brenton House where he presents a practical API survival guide for 2025, packed with MCP updates and actionable strategies to keep your API and AI initiatives ahead of the curve.
Speakers
avatar for Brenton House

Brenton House

Principal Cybersecurity, IBM
Brenton House is an ex-hacker, developer, strategist, and now Principal Cybersecurity and AI Advisor for IBM webMethods. Known for his unique creative work and YouTube channel, Brenton has produced several hit series including The Redacted Hacker, AI: Man vs. Machine, and API Cybersecurity... Read More →
Wednesday September 10, 2025 12:00pm - 12:50pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
  API World

1:00pm PDT

[Virtual] PRO WORKSHOP (API): API Underworld: Red Team Hacking Secrets
Wednesday September 10, 2025 1:00pm - 1:50pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
Parth Shukla, Cequence Security, Security Analyst

This comprehensive workshop is designed to provide participants with a deep understanding of API security, its challenges, and best practices to mitigate risks. Spanning six engaging sessions, the program begins with an introduction to API security and real-world breaches, highlighting the critical importance of securing APIs.

Participants will explore reconnaissance techniques, including using tools like Shodan and Google Dorking, to identify API endpoints. The workshop delves into common API vulnerabilities, such as SQL Injection and XSS, complemented by practical hands-on scanning with Burp Suite.

Additionally, the sessions cover OSINT (Open Source Intelligence) techniques with tools like Maltego, theHarvester, and Wayback, empowering attendees to gather intelligence on API targets. The program culminates with guided vulnerability exploitation exercises and a collaborative group activity to identify and exploit API flaws.

Concluding with a wrap-up session and an open Q&A, this workshop equips participants with the knowledge and skills to secure APIs effectively while fostering a hands-on learning environment
Speakers
avatar for Parth Shukla

Parth Shukla

Security Analyst, Cequence Security
Parth Shukla is a dedicated Cybersecurity Analyst at Cequence Security with a strong passion for Web Application Security. He is an accomplished bug hunter, community builder, and cybersecurity enthusiast with a relentless drive to uncover vulnerabilities and share knowledge. Parth’s... Read More →
Wednesday September 10, 2025 1:00pm - 1:50pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
  API World
 
Thursday, September 11
 

3:00pm PDT

[Virtual] PRO Session (API): Security APIs That Secure APIs
Thursday September 11, 2025 3:00pm - 3:25pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
Jayson DeLancey, Semgrep, Head of Developer Relations

Semgrep is a fast, open-source, static code analysis engine with support for 30+ programming languages.

We'll look at some of the patterns for how developers might introduce vulnerabilities when building APIs.
Speakers
avatar for Jayson DeLancey

Jayson DeLancey

Head of Developer Relations, Semgrep
Jayson is a manager for the Resources Working Group of the Developer Relations Foundation and is Head of Developer Relations for Semgrep, an open-source static code analysis tool.Prior to Semgrep, he worked in a wide variety of industries and leadership roles including with Dolby... Read More →
Thursday September 11, 2025 3:00pm - 3:25pm PDT
VIRTUAL API World -- Workshop Stage A (PRO)
  API World
 
Need help? View Support Guides
Event questions? Contact Event Planner
©2025 Sched About Privacy Terms
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Tuesday, September 2
Wednesday, September 3
Thursday, September 4
Friday, September 5
Wednesday, September 10
Thursday, September 11
Friday, September 12
API World -- Main Stage Theater (OPEN)
API World -- Workshop Stage A (PRO)
API World -- Workshop Stage B (PRO)
CloudX -- Main Stage
DataWeek -- Main Stage
DataWeek -- Workshop Stage C (PRO)
DataWeek Expo Stage (OPEN)
Expo Hall
RingCentral Events
Room G
Santa Clara Convention Center
Santa Clara Convention Center - Lobby
Santa Clara Hyatt Regency Lobby
VIRTUAL DataWeek -- Main Stage
VIRTUAL API World -- Workshop Stage A (PRO)
VIRTUAL API World -- Workshop Stage B (PRO)
VIRTUAL CloudX -- Main Stage
VIRTUAL DataWeek -- Workshop Stage C (PRO)
  • 1. Badge Pick-up & Registration
  • 2. Experiences & Official Events
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • API World
  • CloudX
  • DataWeek
  • Additional Topics
  • AI/ML
  • Talk Type
  • OPEN Session
  • PRO Session
  • PRO Workshop Day (Wed)
  • Tracks
  • AI Models and Management (DataWeek)
  • API Design and Development (API World)
  • API Program and Developer Relations (API World)
  • API Security (API World)
  • API World
  • APIs and AI (API World)
  • Business Optimization through APIs (API World)
  • Cloud Infrastructure Design and Architecture (CloudX)
  • Cloud Native Development (CloudX)
  • CloudX
  • Data Engineering / Architecture and Streaming (DataWeek)
  • Data Governance and Security (DataWeek)
  • Data Science and Machine Learning (DataWeek)
  • Data Strategy / Analytics & Business Intelligence (DataWeek)
  • Data Tools / Technology and Management (DataWeek)
  • Data Warehousing and Storage (DataWeek)
  • DataWeek
  • IT Operations and Enterprise Management (CloudX)
  • Leading a Cloud-First Company (CloudX)
  • Managing AI/ML in the Cloud (CloudX)
  • OPEN Session
  • OpenAPI Summit
  • Partnership and Integration Strategy (API World)
  • Security and Vulnerability Management (CloudX)
  • Service Monitoring and Observability (CloudX)
  • SRE / DevOps and Platform Engineering (CloudX)
  • Testing / Deploying & Monitoring APIs and Services (API World)
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual