The Industry Authority for APIs and Microservices

The API Academy provides expertise and best practices for the strategy, architecture, design and security of enterprise-grade APIs and microservices. Our free API education and certification programs are now available!

NEW FROM THE API ACADEMY

Q2 TechTalk

Bill Oakes, CISSP March 31, 2022

Our API Academy quarterly TechTalk is April 28th at 9:00AM PDT/12:00PM EDT, and has Noname Security experts joining the API Academy team for what promises to be a most interesting discussion. Our team will be talking about API Security – not only from an API management perspective (i.e. locked down gateways, best practices, secured mobile apps) but also enterprise-wide API security tactics, as well as emerging threat vectors.

Q1 TechTalk

Bill Oakes, CISSP January 27, 2022

Our Q1 TechTalk had API Academy members Francois, Aran, and myself reminiscing about the 20th anniversary of Layer7 and the 10th anniversary of API Academy – and many of the “things” that have come and gone over the last 20 years – with a dive into protocols – past, present, and emerging. Definitely worth a watch!

Recent API Academy Posts

Apidays NYC 2022: Friends Don’t Let Friends Centralize Authorization Enforcement

Achieving an identity-centric security model is no small feat. The composable enterprise needs to be secured across multiple clouds, while providing end-users with delightful experiences, yet still maintain high levels of assurance. Oh yea… it has to scale too. This presentation shares lessons learned from our journey towards automating the distributed enforcement of access control rules, and how leveraging a symbiotic relationship between identity management and runtime API security infrastructure enables an identity mesh that spans across applications.

Francois Lascelles August 10, 2022

Three Questions for API Change Management

Adam’s latest blog discusses API Change management and how it allows us to create a process or a set of rules that shapes the way the API grows as more endpoints are added and as existing functionality changes. He then discusses the three factors to consider whenever making changes to an API.

Adam DuVander July 20, 2022

overhead view of a man working on a laptop

Anti-patterns in Microservices (Don’t Do These)

Microservices are a popular approach to software architecture that aim to break up monolithic code into maintainable chunks. These discrete chunks allow for continuous delivery of a service while developing on top of what is in production. That flexibility is exciting in an agile environment, but rushing into deploying your code as a suite of microservices can put you at risk of incorporating anti-patterns that may cause significant problems down the line. In this blog, Adam discusses four common pitfalls as you start building your own microservices.

Adam DuVander June 30, 2022

What are API Anti-Patterns?

Software design patterns are the solutions used to tackle common software development problems. Design Patterns aren’t strictly required for running code but they are essential to avoiding problems in your code. In this article, Adam takes a look at the other side – anti-patterns – a sneaky but common poor software development technique.

Adam DuVander June 21, 2022

Continuous API Management Requires Continuous API Documentation

In his latest blog, Adam discusses the importance of continuous API documentation as your API collection grows (and likely becomes more complex).

Adam DuVander May 31, 2022

API Reliability: How SRE Yields Better APIs

In his latest article, Adam explores the role of the SRE as it relates to API strategy/design, and some of the advantages adopting this role brings to both APIs and business.

Adam DuVander May 19, 2022

Microsurfaces: The Role of APIs in a Microservice Architecture

API-based communication is vital to delivering value in all aspects of a microservice architecture. Explore their relationship in this short introductory ebook.

Download Now

Microservice Architecture: Aligning Principles, Practices, and Culture

An award-winning, full-length ebook from O'Reilly and the API Academy that explains how microservices work, and what it means to build an application the microservices way.

Download Now

Securing Microservice APIs: Sustainable and Scalable Access Control

This essential ebook for technical practitioners proposes an API access control model that can be implemented to provide cohesive security over a network of microservices.

Download Now

API Design Education

For over a decade, we’ve provided thought leadership to global organizations on designing APIs, implementing API security, and modernizing mission-critical systems with continuous API management and microservices.

For Developers »

API Architecture Best Practices

We offer practical, field-tested guidance on how to use microservices and APIs to create service mesh patterns that optimize the security and scalability of multi-cloud, hybrid cloud, and on-premise IT infrastructures.

For Enterprise Architects »

API Briefings for Executives

New 5G and IoT applications will demand unprecedented levels of API performance, security, and governance. Ask us how your peers are integrating APIs and Digital BizOps to get ready for the coming revolution.

For Business Leaders »