All API & Microservices Content Archives

OpenTelemetry: A Game-Changing Standard for Application Visibility

Gary VermeulenMay 15, 2023May 15, 2023

Many enterprises are unaware that their current infrastructure can work with OpenTelemetry. OpenTelemetry is the new cloud-native standard for application observability. This article is the first of a three-part series that explores the technology’s business benefits and advantages.

API Protection using In-memory Data Service

Balaji Radhakrishnan, PMP, CISSPMay 10, 2023May 10, 2023

In today’s digital ecosystem, enterprises are monetizing their valuable digital assets byconverting and exposing them as APIs. While APIs are building blocks of a digitalecosystem, exposing them to the outside world effectively and securely is key for theirsuccess. This business strategy accomplishment (exchange of information and creatingan ecosystem, etc.,) is dependent on an API management […]

Of GraphQL, DX Friction, and Surgical Monolithectomy

Francois LascellesApril 3, 2023April 3, 2023

API Security – Today’s Virtual Moat

Bill Oakes, CISSPMarch 28, 2023May 10, 2023

This blog takes a look at medieval methods to secure the castle – and how those methods actually translate directly to how modern enterprises protect their resources.

OAuth mTLS – Added Security Challenges

Adam DuVanderNovember 30, 2022November 30, 2022

This latest article in a series discusses the additional security issues that arise when using mTLS, and how to mitigate those issues by combining mTLS with OAuth.

Turf wars; Who owns that API?

Marcel den HartogNovember 28, 2022November 28, 2022

This artcile takes a look at API ownership and the importance of implementing an API management solution

OAuth mTLS Adoption Challenges

Adam DuVanderNovember 21, 2022November 21, 2022

This article discusses adoption challenges with OAuth mTLS, steps one can take to mitigate those challenges.

API Academy Workshop in Paris

Bill Oakes, CISSPNovember 10, 2022May 10, 2023

At Apidays Paris, API Academy will be conducting a four hour workshop highlighting best practices in API design, strategy, security, and futures. Apidays will be December 14-16 at the Cité des sciences et de l’industrie. The API Academy Workshop will be conducted from 2:00pm to 5:45pm on December 14. As an API Academy reader, you can […]

OAuth mTLS – An Introduction to Mutual TLS for APIs

Adam DuVanderNovember 4, 2022November 7, 2022

This blog introduces mTLS and discusses the advantages of combining it with OAuth 2.0 for additional security.

GraphQL Schemas – From Design-time Introspection to Runtime Content Validation

Francois LascellesSeptember 20, 2022September 20, 2022

This blog takes a look at GraphQL from a security perspective, and how to design a schema that meets CSO requirements.