All API & Microservices Content Archives - Page 4 of 28

API Reliability: How SRE Yields Better APIs

By Adam DuVanderPosted on May 19, 2022May 19, 2022

In his latest article, Adam explores the role of the SRE as it relates to API strategy/design, and some of the advantages adopting this role brings to both APIs and business.

Scaling Token Revocation with Continuous Access Evaluation

By Balaji Radhakrishnan, PMP, CISSPPosted on May 15, 2022January 10, 2023

In his latest blog, Balaji discusses continuous access evaluation and how to validate token revocation when deploying this model.

Key Use Cases for GraphQL APIs

By Adam DuVanderPosted on May 12, 2022May 12, 2022

GraphQL has become a preferred option when flexibility and efficiency are top priorities. GraphQL is also easy to integrate with existing applications, since implementations are available in JavaScript, Python, PHP, and several other languages. Here are three use cases where GraphQL shines. This article highlights three specific use cases where GraphQL shines.

Adapting Continuous API Management for Cloud Architecture

By Adam DuVanderPosted on April 21, 2022April 21, 2022

In his latest blog, Adam discusses best practices for Continuous API Management , including several significant ways that drives change when the API is operating on cloud architecture. API management, whether on the cloud or off, comes down to discovery, documentation, monitoring, alerting, and authentication/security. How well you implement best practices in these areas will make or break your service. In this article, we’ll summarize several considerations for adapting to the cloud.

GraphQL vs. gRPC vs. REST: Comparing Data Exchange Methods for APIs

By Adam DuVanderPosted on April 11, 2022April 11, 2022

In his latest blog, Adam discusses how APIs are the building blocks of the distributed systems that run our world, and how they constantly move data from point to point. He then discusses different API technologies to provide solutions to different pain points in API data exchange.

Q2 TechTalk

By Bill Oakes, CISSPPosted on March 31, 2022November 7, 2022

Our API Academy quarterly TechTalk is April 28th at 9:00AM PDT/12:00PM EDT, and has Noname Security experts joining the API Academy team for what promises to be a most interesting discussion. Our team will be talking about API Security – not only from an API management perspective (i.e. locked down gateways, best practices, secured mobile apps) but also enterprise-wide API security tactics, as well as emerging threat vectors.

Three Very Different Categories of APIs

By Adam DuVanderPosted on March 11, 2022March 11, 2022

The latest blog from Adam covers the three primary categories of APIs (Single Implementation, Internal Utility, and External Extension) and when best to choose each.

Q1 TechTalk

By Bill Oakes, CISSPPosted on January 27, 2022November 7, 2022

Our Q1 TechTalk had API Academy members Francois, Aran, and myself reminiscing about the 20th anniversary of Layer7 and the 10th anniversary of API Academy – and many of the “things” that have come and gone over the last 20 years – with a dive into protocols – past, present, and emerging. Definitely worth a watch!

How-to Protect Your APIs from OWASP API Security Top Ten (part two)

By Francois LascellesPosted on January 11, 2022January 11, 2022

In this second part of a two-part series, Francois takes a look at #’s 6-10 of the OWASP API Security Top 10 risks and how to best mitigate them through a secured API management solution.

TechTalks are Back!

By Bill Oakes, CISSPPosted on December 15, 2021November 7, 2022

Register for our Q1 TechTalk, where we’ll be discussing API protocols – past, present, and future. See you there!