Salt Security has extended its platform for securing application programming interfaces (APIs) to include support for APIs built using GraphQL. GraphQL is an open source data query and manipulation language for APIs that was originally developed by Facebook. It provides a more efficient approach to querying data than the REST APIs that are widely used […]
Postman Survey Shows Focus on Building and Deploying APIs
A survey of more than 28,000 developers and application programming interface (API) professionals published today by Postman found nearly half of respondents (49%) are now spending the majority of their time developing APIs. More than a quarter (28%) now spend 20 or more hours per week working with APIs. Kin Lane, chief evangelist for Postman, […]
Securing Microservices Vs. Monolithic Apps
New requirements for Securing Microservices Vs. Monolithic Apps Enterprises are migrating from monolithic applications to microservices, hoping to accelerate software deployment and improve scalability. Security is sometimes glossed over in these transitions. Simple best practices like authenticating users and using SSL are still important to follow. But teams need to think through important differences between […]
TraceAI : Machine Learning Driven App and API Security
API security Modern applications are mobile first and are built around cloud-native distributed microservices architectures. These architectures have become the basic building blocks for complex and reliable distributed web and mobile applications. Many of these distributed APIs expose the business logic directly over the web; hence the attack surface and attack vectors are very different […]
Safeguarding Composable Architecture Applications Based on API-enabled Components
The use of composable methodologies for application development is growing rapidly. The reason: It offers many benefits that speed the development process and opens up application creation to developers of all skill levels. However, the speed and ease-of-use benefits, via the reuse of pre-built components, can introduce new security risks that traditional security management solutions […]
Use the OWASP API Top 10 to Secure Your APIs
The tools, languages, platforms, and methods used to build applications have changed drastically over the past decade. Application security practices have to change with them; otherwise, security professionals will be playing constant catch-up with attackers and cybercriminals. What Is the OWASP API Top 10? The increase of microservices and application programming interfaces (APIs) has given […]
API Security by Design
“APIs are nothing new,” said Secure Code Warrior co-founder and CTO Matias Madou, but they have recently become more widely used. And where they were once a local mechanism, they are increasingly used in a distributed manner, partly because of changes to application architectures. Another reason is that users are increasingly likely to access systems […]
Salt Security Enhances Developer Insights on Industry’s Only Full Lifecycle API Security Platform
Salt augments existing “shift left” features to provide more remediation insights earlier in the API lifecycle to help organizations better secure their API-driven applications Palo Alto, CA – May 12, 2021 – Salt Security, the leading API security company, today announced that it has updated its next-generation Salt Security API Protection Platform with additional “shift left” security […]
The Evolution to Cloud-Native Applications and APIs
If you’ve spent any length of time in application development, you’re familiar with change. It’s the only constant. And along with how we build applications come changes in the techniques used to keep them secure. Securing modern applications requires more diligence than ever before. A review of how application development has changed over the past […]
Game On: Secure Coding Virtual Summit 2021
Agile organizations are looking for ways to win at security without slowing down their release cycles. That’s where DevSecOps comes in. The days of a hands-off security approach for developers are over. Organizations implementing DevSecOps to integrate security into their DevOps framework are able to release secure software faster. Developers test code for potential security […]