In this second part of a two-part series, Francois takes a look at #’s 6-10 of the OWASP API Security Top 10 risks and how to best mitigate them through a secured API management solution.
Category: API Security
Can You Pattern-detect Your Way Out of the Log4j Exploit Risk?
In his latest blog, Francois Lascelles takes a look at the rather stunning log4j exploit currently impacting enterprises, and how a properly configured API management solution can mitigate the risk.
How-to Protect Your APIs from OWASP API Security Top Ten – (part one)
In a recent blog series,…
API Gateway Cipher Suite Best Practices – Part 1
In this three part article, we’ll cover some of the best practices in selecting the best TLS cipher suite algorithms with your API gateways.
The Push for Zero Trust
The Zero Trust model is founded on the belief that organizations should not automatically trust anything inside or outside its perimeters and must verify everything trying to connect to its resources before granting access—based on identity, trustworthiness, and context. This blog discusses the Zero Trust model and its components.
How To Protect Your Web Applications from OWASP Top Ten (part two)
In my first blog on…
How To Protect Your Web Applications from OWASP Top Ten (part one)
The Open Web Application Security…
The Most Common API Authentication Methods
Unless your API is a…
API Authentication Best Practices
In this post, we’ll explore authentication methods, how to keep tokens safe, and what comes next.
API Security in a Multi-Cloud Environment
In today’s app economy, more…