Emerging Protocols and Security
In his latest blog, Bill takes a look at a few of the emerging API protocols and their impact on enterprise security models – with a few pointers for mitigating those concerns.
API Academy for All Roles
OWASP API Security Risks: What’s Ahead
In this final blog in his series on OWASP API Security Top Ten, Bala takes a look at what’s likely ahead for API and application developers.
2023 OWASP Top Ten API Security Risks: Unrestricted Resource Consumption, Unrestricted Access to Sensitive Business Flows and Security Misconfiguration
In part two of this series on the updated OWASP Top Ten API Security risks, Bala examines three more of the Top Ten: Unrestricted Resource Consumption, Unrestricted Access to Sensitive Business Flows and Security Misconfiguration.
2023 OWASP Top 10 API Security Risks: Broken Authorization and Authentication
In this first piece of our three-part series, we’ll examine the top three risks on the 2023 list: Broken Object Level Authorization, Broken Authentication and Broken Object Property Level Authorization.
The Open Web Application Security Project
This blog reviews the OWASP, the Top Ten and API Security Top Ten, and opens the door for an upcoming series on the latter two.
API Security – Who is your Provider?
In his latest blog, Bala discusses the fundamentals of API security and what to look for with your API security provider.
OpenTelemetry and API Gateways: Creating a Path for Future App Observability
This 3rd in a 3 part series furthers the discussion on OpenTelemetry and API Gateways can leverage Otel for new levels of observability for APIs.
How OpenTelemetry is Transforming Observability
In this second of a three part series, Gary discusses OpenTelemetry and it’s business benefits and advantages.
API Security – Today’s Virtual Moat
This blog takes a look at medieval methods to secure the castle – and how those methods actually translate directly to how modern enterprises protect their resources.