The Industry Authority for APIs and Microservices

The API Academy provides expertise and best practices for the strategy, architecture, design and security of enterprise-grade APIs and microservices. Our free API education and certification programs are now available!

NEW FROM THE API ACADEMY

Virtual API Academy Workshop

Earlier this year, the API Academy, in conjunction with the site relaunch and the new certification program, planned on a twelve city World Tour for API Academy Workshops – timing four

Next TechTalk Session is June 24

On June 24, Aran and Bill are joined by researchers from Aite Group to talk about both the OWASP Top 10 web-based threats and the OWASP Top 10 API threats.

Recent API Academy Posts

API Academy Certification

API Security Architect Certification

The new certification course for API Security Architect is now available. This is an in-depth, self-paced course, and by completing this course, you will be able to: Explain the unique security risks of APIs and identify typical areas of API vulnerabilities  Explain the purpose of OAuth 2.0 as a framework for authorization  Describe the current

Read More »

Two Questions Behind Your API Strategy

Over the last 10 years, APIs have become the de facto tool of modern software development. “Let’s build an API for that,” is a natural reaction to a technical problem. While APIs play a key role, many engineering organizations are now overflowing with non-strategic services. Developer confusion might have been limited if those groups had

Read More »

TechTalk: A Panel Discussion on OWASP Top 10/API Top 10

June 2020’s TechTalk had Joe Krull from Aite Group and API Academy’s own Jay Thorne join hosts Aran and Bill on a discussion around OWASP Top 10 and the newer API Top 10 and how enterprises can address common security issues around these problem areas. They also discussed the relationship between app developers and security

Read More »

A Solid Investment – Don’t Skimp on Security Training for Developers

Over the past months in API Academy blogs I’ve provided my observations and recommendations on the importance of event and access logging and the compelling reasons why you want to avoid security misconfigurations. This month, I’ll focus on security training for developers and why you should make this investment.  To remind, I’m a bit of

Read More »

Virtual API Academy Workshop

Earlier this year, the API Academy, in conjunction with the site relaunch and the new certification program, planned on a twelve city World Tour for API Academy Workshops – timing four of them to be run in conjunction with APIdays. We had industry leaders lined up to travel the world to talk about best practices

Read More »

API Academy Essentials

Register for Exclusive Updates

Subscribe to receive exclusive content, webcasts, how-to videos, and event invitations from the Academy. 

Next TechTalk Session is June 24

On June 24, Aran and Bill are joined by researchers from Aite Group to talk about both the OWASP Top 10 web-based threats and the OWASP Top 10 API threats. Every month, join hosts Aran White and Bill Oakes for the reboot of our popular live webinar series, where we discuss both industry trends and

Watch TechTalks »
Microsurfaces: The Role of APIs in a Microservice Architecture
API-based communication is vital to delivering value in all aspects of a microservice architecture. Explore their relationship in this short introductory ebook.
Download Now
Microservice Architecture: Aligning Principles, Practices, and Culture
An award-winning, full-length ebook from O'Reilly and the API Academy that explains how microservices work, and what it means to build an application the microservices way.
Download Now
Securing Microservice APIs: Sustainable and Scalable Access Control
This essential ebook for technical practitioners proposes an API access control model that can be implemented to provide cohesive security over a network of microservices.
Download Now
Previous
Next
APIs & Microservices from the API Academy

API Design Education

For over a decade, we’ve provided thought leadership to global organizations on designing APIs, implementing API security, and modernizing mission-critical systems with continuous API management and microservices.

Cloud Architectures from the API Academy

API Architecture Best Practices

We offer practical, field-tested guidance on how to use microservices and APIs to create service mesh patterns that optimize the security and scalability of multi-cloud, hybrid cloud, and on-premise IT infrastructures.

5G and IoT Applications from the API Academy

API Briefings for Executives

New 5G and IoT applications will demand unprecedented levels of API performance, security, and governance. Ask us how your peers are integrating APIs and Digital BizOps to get ready for the coming revolution.