Over the years this has been done in many ways, using e g file transfers, message buses and APIs to fit business requirements, compliance and relevant threat models. Some solutions are less secure than others and integrations often introduce risk and attack vectors.

This presentation addresses infrastructure and application layer defenses to meet high security requirements for common types of integrations. In particular for HTTP APIs - from HTTPS, API-keys and Basic Authentication to OAuth2 with mutual TLS, Private Key JWT and DPoP.