API Management Archives - API Academy

Apidays NYC 2022: Friends Don’t Let Friends Centralize Authorization Enforcement

Francois LascellesAugust 10, 2022August 10, 2022

Achieving an identity-centric security model is no small feat. The composable enterprise needs to be secured across multiple clouds, while providing end-users with delightful experiences, yet still maintain high levels of assurance. Oh yea… it has to scale too. This presentation shares lessons learned from our journey towards automating the distributed enforcement of access control rules, and how leveraging a symbiotic relationship between identity management and runtime API security infrastructure enables an identity mesh that spans across applications.

Three Questions for API Change Management

Adam DuVanderJuly 20, 2022July 20, 2022

Adam’s latest blog discusses API Change management and how it allows us to create a process or a set of rules that shapes the way the API grows as more endpoints are added and as existing functionality changes. He then discusses the three factors to consider whenever making changes to an API.

Continuous API Management Requires Continuous API Documentation

Adam DuVanderMay 31, 2022May 31, 2022

In his latest blog, Adam discusses the importance of continuous API documentation as your API collection grows (and likely becomes more complex).

Scaling Token Revocation with Continuous Access Evaluation

Balaji Radhakrishnan, PMP, CISSPMay 15, 2022July 12, 2022

In his latest blog, Balaji discusses continuous access evaluation and how to validate token revocation when deploying this model.

How-to Protect Your APIs from OWASP API Security Top Ten (part two)

Francois LascellesJanuary 11, 2022January 11, 2022

In this second part of a two-part series, Francois takes a look at #’s 6-10 of the OWASP API Security Top 10 risks and how to best mitigate them through a secured API management solution.

Can You Pattern-detect Your Way Out of the Log4j Exploit Risk?

Francois LascellesDecember 13, 2021December 13, 2021

In his latest blog, Francois Lascelles takes a look at the rather stunning log4j exploit currently impacting enterprises, and how a properly configured API management solution can mitigate the risk.

API Gateway Cipher Suite Best Practices – Part 1

Daniel GaudetOctober 18, 2021October 18, 2021

In this three part article, we’ll cover some of the best practices in selecting the best TLS cipher suite algorithms with your API gateways.

Do You Need Site Reliability Engineers for Your APIs?

Adam DuVanderSeptember 2, 2021September 3, 2021

Most organizations want to move…

Six Health Checks for Your API

Adam DuVanderJuly 14, 2021July 14, 2021

Organizations of all sizes depend…

Continuous Monitoring for API Reliability

Adam DuVanderJune 30, 2021July 2, 2021

Anyone building APIs should know…