For Enterprise Architects Archives

Emerging Protocols and Security

By Bill Oakes, CISSPPosted on September 25, 2023September 25, 2023

In his latest blog, Bill takes a look at a few of the emerging API protocols and their impact on enterprise security models – with a few pointers for mitigating those concerns.

The Open Web Application Security Project

By Bill Oakes, CISSPPosted on August 21, 2023August 21, 2023

This blog reviews the OWASP, the Top Ten and API Security Top Ten, and opens the door for an upcoming series on the latter two.

OpenTelemetry and API Gateways: Creating a Path for Future App Observability

By Francois LascellesPosted on June 19, 2023June 19, 2023

This 3rd in a 3 part series furthers the discussion on OpenTelemetry and API Gateways can leverage Otel for new levels of observability for APIs.

How OpenTelemetry is Transforming Observability

By Gary VermeulenPosted on June 5, 2023June 5, 2023

In this second of a three part series, Gary discusses OpenTelemetry and it’s business benefits and advantages.

Of GraphQL, DX Friction, and Surgical Monolithectomy

By Francois LascellesPosted on April 3, 2023April 3, 2023

API Security – Today’s Virtual Moat

By Bill Oakes, CISSPPosted on March 28, 2023May 10, 2023

This blog takes a look at medieval methods to secure the castle – and how those methods actually translate directly to how modern enterprises protect their resources.

OAuth mTLS Adoption Challenges

By Adam DuVanderPosted on November 21, 2022November 21, 2022

This article discusses adoption challenges with OAuth mTLS, steps one can take to mitigate those challenges.

OAuth mTLS – An Introduction to Mutual TLS for APIs

By Adam DuVanderPosted on November 4, 2022November 7, 2022

This blog introduces mTLS and discusses the advantages of combining it with OAuth 2.0 for additional security.

Three Questions for API Change Management

By Adam DuVanderPosted on July 20, 2022July 20, 2022

Adam’s latest blog discusses API Change management and how it allows us to create a process or a set of rules that shapes the way the API grows as more endpoints are added and as existing functionality changes. He then discusses the three factors to consider whenever making changes to an API.

Anti-patterns in Microservices (Don’t Do These)

By Adam DuVanderPosted on June 30, 2022June 30, 2022

Microservices are a popular approach to software architecture that aim to break up monolithic code into maintainable chunks. These discrete chunks allow for continuous delivery of a service while developing on top of what is in production. That flexibility is exciting in an agile environment, but rushing into deploying your code as a suite of microservices can put you at risk of incorporating anti-patterns that may cause significant problems down the line. In this blog, Adam discusses four common pitfalls as you start building your own microservices.