JSON Web Token (JWT), M. Jones, J. Bradley, N. Sakimura, 2015Request for Comments (Internet Engineering Task Force (IETF)) - The official standard defining the structure and processing of JSON Web Tokens (JWTs), which are crucial for stateless authentication in APIs.
API Security in Action, Neil Madden, 2020 (Manning Publications) - A practical guide to securing APIs, covering various authentication schemes (API keys, JWT, OAuth 2.0), authorization patterns (RBAC, ABAC), and deployment considerations.