Gartner Report: How to Build an Effective API Security Strategy

January 8, 2018

How to Build an Effective API Security Strategy

A security strategy that manages access and protects systems from attack while still engaging digital ecosystems is essential to any API program. Application leaders must design, execute and govern an effective API security strategy, including the use of API gateways.

A purely edge-based web application security defense strategy is not fully ready for the new challenges posed by APIs. The widespread use of internal APIs, combined with mobile access and increased reliance on cloud APIs, mean that defending from the edge is insufficient. New hybrid approaches highlight the fact that organizations should take a holistic view of API security.

Key Takeaways Include:

  • An understanding of API security building blocks
  • How to design an effective API security policy
  • The pitfalls of coding security directly into your APIs
  • The three-step approach to continuous API security
  • Banking industry case study: stopping fintech screen scraping

Previous Flipbook
Bot Defense: Insights Into Basic and Advanced Techniques for Thwarting Automated Threats
Bot Defense: Insights Into Basic and Advanced Techniques for Thwarting Automated Threats

David Monahan, Research Director from EMA, describes the growing bot issues in this whitepaper. Find out wh...

Next Flipbook
Ovum Survey on API Security: A Disjointed Affair
Ovum Survey on API Security: A Disjointed Affair

API Security Study by Ovum. Understand the findings from this survey of how companies use APIs and how they...