API World: Cybersecurity | BBVA API

APIs under control

The speed at which fake news travels has endorsed application programming interfaces. The danger is there, but it's easier to avoid if we have the APIs under control.

APIs, Cybersecurity / 12 November 2019

New digital identity thanks to APIs

A large part of the user authentication protocols in the new digital age –both proprietary solutions in the hands of companies such as IBM or Oracle and open solutions like OpenID and OAuth 2.0– are based on application programming interfaces (APIs).

APIs, Cybersecurity / 21 November 2018

Security in mobile APIs: OAuth 2.0 vs basic HTTP access authentication

Using an optimal credential or authentication system is vital to ensure the security of an application programming interface. OAuth 2.0 has become the basic security protocol for mobile APIs development and for providing credentials to launch native applications. The basic HTTP access authentication method does not guarantee the same level of security.

APIs, Cybersecurity / 20 September 2018

SANS Cloud Security

Cybersecurity / 17 de enero

San Francisco, EEUU

Cybercamp 2016

Cybersecurity / 01 de diciembre

Cognitive, cybersegurity and cloud in the spotlight at Disruptive 2016

Next 30 November Madrid will welcome leading experts in cognitive systems, cybersecurity and cloud computing. The event, organized by BEEVA and i4S with the collaboration of BBVA, will analyze the corporate technological landscape in depth.

Cybersecurity, Digital transformation, Entrepreneurs, Startups / 11 November 2016

Digital identity, payments, blockchain and financial inclusion, the top trends in BBVA Open Talent

Musoni, PayKey, Alegra, Kobra, Precognitive and Cambridge Blockchain are the winning startups in BBVA Open Talent 2016. Their fintech projects set out to transform the financial ecosystem in different areas such as authentication, blockchain, financial inclusion and the fight against fraud.

Cybersecurity, Entrepreneurs, Open Banking Regulations, Startups / 03 October 2016

Name	Owner	Duration	Description
gobp.lang	BBVA	1 month	Language preference
aceptarCookies	BBVA	1 year	Configuration Accepted Cookies
_abck	BBVA	1 year	Helps protect against malicious website attacks
bm_sz	BBVA	4 hours	Helps protect against malicious website attacks
ADRUM_BTs	Salesforce Marketing Cloud	Session	Required for monitoring of the service, inherent to SFMC
ADRUM_BT1	Salesforce Marketing Cloud	Session	Required for monitoring of the service, inherent to SFMC
ADRUM_BTa	Salesforce Marketing Cloud	Session	Required for monitoring of the service, inherent to SFMC
ADRUM_BT	Salesforce Marketing Cloud	Session	Required for monitoring of the service, inherent to SFMC
xt_0d95e	Salesforce Marketing Cloud	Session	Remember user preferences (if any)
__s9744cdb192d044faa1bf201d29fafd1e	Salesforce Marketing Cloud	Session	Remember user preferences (if any)
PREF	Google	Permanent 10 years	Youtube cookies used in the reproduction of videos through the web
wpml_browser_redirect_test	WPML	Session	Text translation in the portal
wp-wpml_current_language	WPML	24 hours	Text translation in the portal

Name	Owner	Duration	Description
AMCV_***	Adobe Analytics	Session	Unique Visitor IDs used in Cloud Marketing solutions
AMCVS_***	Adobe Analytics	2 years	Unique Visitor IDs used in Cloud Marketing solutions
demdex (safari)	Adobe Analytics	180 days	Create and store unique and persistent identifiers
sessionID	Adobe Analytics	Session	Launch's internal cookie used to identify the user
gpv_URL	Adobe Analytics	Session	Adobe Analytics plugin: getPreviousValue Capture the value of a certain variable in the following page view, in this case the prop1
gpv_level1	Adobe Analytics	Session	Cookie used to store the DataLayer levl1 of the previous page.
gpv_pageIntent	Adobe Analytics	Session	Cookie used to store the pageIntent of the previous page.
gpv_pageName	Adobe Analytics	Session	Cookie used to store the pagename of the previous page.
aocs	Adobe Analytics	Session	Cookie that stores the first values collected at the beginning of a process.
TTC	Adobe Analytics	Session	Cookie used to store the time between the App Page Visit event and the App Completed event.
TTCL	Adobe Analytics	Session	Cookie used to store the time between the LogIn event and App Completed.
s_cc	Adobe Analytics	Session	Determine if cookies are active
s_hc	Adobe Analytics	Session	Cookie used by Adobe for analytical purposes
s_ht	Adobe Analytics	Session	Cookie used by Adobe for analytical purposes
s_nr	Adobe Analytics	2 years	Determine the number of user visits
s_ppv	Adobe Analytics	Permanent	Adobe Analytics plugin: getPercentPageViewed Determine what percentage of the page a user views
s_sq	Adobe Analytics	Session	ClickMap/ActivityMap features
s_tp	Adobe Analytics	Session	Cookie used by Adobe for analytical purposes
s_visit	Adobe Analytics	2 years	Cookie used by Adobe to know when a session has been started.
_gid	Google	Session	Cookie used by Google Analytics
_ga	Google	Session	Cookie set by analytics.js; JavaScript library owned by Google. The analytics.js library is part of Google Universal Analytics and uses this original cookie that contains an anonymous identifier used to distinguish users.
_dc_gtm_UA-70091540-1	Google	Session	Cookie used by Google Analytics
_gali	Google	Session	Cookie used by Google Analytics
S	Google	Session	Collect information about users' navigation on the site in order to know the origin of the visits and other similar data at a statistical level. It does not obtain data on the names or surnames of users or the specific postal address from which they connect.
HSID	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
SID	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
SIDCC	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
1P_JAR	Google	Session	Google Cookie. These cookies are used to collect website statistics and track conversion rates.
SAPISID	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
NID	Google	Permanent 6 months	Contains a unique ID that Google uses to remember your preferences and other information, such as your preferred language (e.g. espyearl), the number of search results you want to be displayed per page (e.g. 10 or 20) and whether you want Google's SafeSearch filter to be on or off.
SSID	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
APISID	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
CONSENT	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
DV	Google	Session	They enable the function of registering the user's origin. The registered data will be, among others, if the user comes to our website by direct traffic, from another website, from an advertising campaign or from a search engine (indicating the keyword used and the source.
YSC	Google	Session	Youtube cookies used in the reproduction of videos through the web
VISITOR_INFO1_LIVE	Google	Permanent 6 months	Youtube cookies used in the reproduction of videos through the web

Name	Owner	Duration	Description
_fbp	Facebook	90 days	Cookie used by facebook for advertising purposes.
_fbp	Facebook	90 days	Cookie used by facebook for advertising purposes.
fr	Facebook	90 days	Cookie used by facebook for advertising purposes.
IDE	Google	1 year	Cookie that stores information about the user and uses it for advertising purposes.
OT2	VersaTag	90 days	VersaTag Cookie used to store a user id and the number of user visits.
u2	VersaTag	90 days	VersaTag Cookie where the user ID is stored
TargetingInfo 2	MediaMind	1 year	Cookie that serves to assign a unique random number that generates MediaMind.

Name	Owner	Duration	Description
mbox	Adobe Target	9 days	Cookie used by Adobe Target to test user experience customization.